CVE-2025-11888 | ShopEngine Elementor WooCommerce Builder Addon Plugin License Status Update post_deactive/post_activate improper authorization

A vulnerability was found in ShopEngine Elementor WooCommerce Builder Addon Plugin up to 4.8.4 on WordPress. It has been classified as critical. The impacted element is the function post_deactive/post_activate of the component License Status Update Handler. The manipulation leads to improper authorization.

This vulnerability is documented as CVE-2025-11888. The attack can be initiated remotely. There is not any exploit available.VulDB Recent EntriesRead More