cbcvebase.

Kingaddons.Com King Addons For Elementor vulnerabilities

5 known vulnerabilities affecting kingaddons.com/king_addons_for_elementor.

Total CVEs
5
CISA KEV
0
Public exploits
0
Exploited in wild
0
Severity breakdown
CRITICAL2MEDIUM3

Vulnerabilities

Page 1 of 1
CVE-2025-6327P2CRITICALCVSS 10.0≤ 51.1.362025-11-06
CVE-2025-6327 [CRITICAL] CWE-434 CVE-2025-6327: Unrestricted Upload of File with Dangerous Type vulnerability in KingAddons.com King Addons for Elem Unrestricted Upload of File with Dangerous Type vulnerability in KingAddons.com King Addons for Elementor king-addons allows Upload a Web Shell to a Web Server.This issue affects King Addons for Elementor: from n/a through <= 51.1.36.
nvd
CVE-2025-6325P3CRITICALCVSS 9.8≤ 51.1.362025-11-06
CVE-2025-6325 [CRITICAL] CWE-266 CVE-2025-6325: Incorrect Privilege Assignment vulnerability in KingAddons.com King Addons for Elementor king-addons Incorrect Privilege Assignment vulnerability in KingAddons.com King Addons for Elementor king-addons allows Privilege Escalation.This issue affects King Addons for Elementor: from n/a through <= 51.1.36.
nvd
CVE-2025-62889P3MEDIUMCVSS 6.5≤ 51.1.612025-10-27
CVE-2025-62889 [MEDIUM] CWE-862 CVE-2025-62889: Missing Authorization vulnerability in KingAddons.com King Addons for Elementor king-addons allows E Missing Authorization vulnerability in KingAddons.com King Addons for Elementor king-addons allows Exploiting Incorrectly Configured Access Control Security Levels.This issue affects King Addons for Elementor: from n/a through <= 51.1.61.
nvd
CVE-2025-62887P4MEDIUMCVSS 6.5≤ 51.1.612025-10-27
CVE-2025-62887 [MEDIUM] CWE-79 CVE-2025-62887: Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') vulnerability i Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') vulnerability in KingAddons.com King Addons for Elementor king-addons allows DOM-Based XSS.This issue affects King Addons for Elementor: from n/a through <= 51.1.61.
nvd
CVE-2025-30926P4MEDIUMCVSS 4.3≤ 24.12.582025-04-01
CVE-2025-30926 [MEDIUM] CWE-862 CVE-2025-30926: Missing Authorization vulnerability in KingAddons.com King Addons for Elementor king-addons.This iss Missing Authorization vulnerability in KingAddons.com King Addons for Elementor king-addons.This issue affects King Addons for Elementor: from n/a through <= 24.12.58.
nvd
Kingaddons.Com King Addons For Elementor vulnerabilities | cvebase