CRITICAL
Studio Keren Aga LTD.
CVE published 2026-06-17
CVE-2026-27041
A critical vulnerability (CVSS Score: 9.9) was discovered in the Unlimited Elements for Elementor (Premium) plugin, version 2.0.6 and earlier. This vulnerability allows contributors to upload arbitrary files, potentially leading to severe consequences, including code execution and data breaches. The vulnerability was made public on June 17, 2026. Users of this plugin should immediately apply patches or up [truncated]