A vulnerability, which was classified as critical , has been found in ThemeREX Group Elementra Plugin up to 1.0.9 on WordPress. Affected by this vulnerability is an unknown functionality. Performing a manipulation results in deserialization. This vulnerability is reported as CVE-2026-39529 . The attack is possible to be carried out remotely. No exploit exists.