CVE-2026-1206 | elemntor Elementor Website Builder Plugin up to 3.35.7 on WordPress Template is_allowed_to_read_template authorization

A vulnerability described as problematic has been identified in elemntor Elementor Website Builder Plugin up to 3.35.7 on WordPress. This vulnerability affects the function is_allowed_to_read_template of the component Template Handler. Executing a manipulation can lead to authorization bypass.

The identification of this vulnerability is CVE-2026-1206. The attack may be launched remotely. There is no exploit available.VulDB Recent EntriesRead More