WordPress King Addons Flaw Under Active Attack Lets Hackers Make Admin Accounts

Updated on December 3, 2025

A critical security flaw impacting a WordPress plugin known as King Addons for Elementor has come under active exploitation in the wild.
The vulnerability, CVE-2025-8489 (CVSS score: 9.8), is a case of privilege escalation that allows unauthenticated attackers to grant themselves administrative privileges by simply specifying the administrator user role during registration.
It affects versions…

Read the rest of the story at Read More

Source: The Hacker News

October 23, 2025 Uncategorized

Critical Lanscope Endpoint Manager Bug E...

August 2, 2025 Uncategorized

New ‘Plague’ PAM Backdoor Exposes Cr...

July 16, 2025 Uncategorized

WordPress King Addons Flaw Under Active Attack Lets Hackers Make Admin Accounts

Related posts

Critical Lanscope Endpoint Manager Bug E...

New ‘Plague’ PAM Backdoor Exposes Cr...

Deepfakes. Fake Recruiters. Cloned CFOs ...

Leave a Comment Cancel reply

Recent News

Amazon Exposes Years-Long GRU Cyber Campaign Targeting Energy and Cloud Infrastructure

Why Data Security and Privacy Need to Start in Code

Fortinet FortiGate Under Active Attack Through SAML SSO Authentication Bypass

React2Shell Vulnerability Actively Exploited to Deploy Linux Backdoors

Google to Shut Down Dark Web Monitoring Tool in February 2026

Featured Chrome Browser Extension Caught Intercepting Millions of Users’ AI Chats

FreePBX Patches Critical SQLi, File-Upload, and AUTHTYPE Bypass Flaws Enabling RCE

⚡ Weekly Recap: Apple 0-Days, WinRAR Exploit, LastPass Fines, .NET RCE, OAuth Scams & More

A Browser Extension Risk Guide After the ShadyPanda Campaign

Phantom Stealer Spread by ISO Phishing Emails Hitting Russian Finance Sector