Privilege Escalation Vulnerability in King Addons for Elementor by KingAddons.com
CVE-2025-6325

9.8CRITICAL

Key Information:

Vendor: WordPress
Status: King Addons For Elementor
Vendor: CVE Published:; 6 November 2025

What is CVE-2025-6325?

A vulnerability exists in King Addons for Elementor, developed by KingAddons.com, that allows attackers to escalate their privileges. This Incorrect Privilege Assignment flaw enables unauthorized users to gain elevated access to restricted functionalities within the plugin. The issue affects all versions up to and including 51.1.36, posing a significant risk to sites using this WordPress plugin. Immediate action is recommended to mitigate potential exploits.

Affected Version(s)

King Addons for Elementor <= n/a

References

https://vdp.patchstack.com/database/Wordpress/Plugin/king...

vdb-entry

CVSS V3.1

Score:

9.8

Severity:

CRITICAL

Confidentiality:

High

Integrity:

High

Availability:

High

Attack Vector:

Network

Attack Complexity:

Low

Privileges Required:

None

User Interaction:

None

Scope:

Unchanged

Download the Critical Vulnerability Management Cheat Sheet

Timeline

Vulnerability published
Nov 6, 2025
Vulnerability Reserved
Jun 19, 2025

Credit

Abu Hurayra | Patchstack Bug Bounty Program

JSON