CVE-2025-10173 | ShopEngine Elementor WooCommerce Builder Addon Plugin Setting post_save improper authorization

A vulnerability was found in ShopEngine Elementor WooCommerce Builder Addon Plugin up to 4.8.3 on WordPress and classified as critical. Affected is the function post_save of the component Setting Handler. The manipulation results in improper authorization.

This vulnerability is identified as CVE-2025-10173. The attack can be executed remotely. There is not any exploit available.VulDB Recent EntriesRead More