CVE-2025-69300
WordPress Premium Addons for Elementor plugin <= 4.11.63 - Settings Change vulnerabilityMissing Authorization vulnerability in Leap13 Premium Addons for Elementor premium-addons-for-elementor allows Exploiting Incorrectly Configured Access Control Security Levels.This issue affects Premium Addons for Elementor: from n/a through <= 4.11.63.
We have discovered 98,144 live websites that are affected by CVE-2025-69300.
Affected Software
| Product |  Premium Addons for Elementor |
| Category | Wordpress Plugins |
| Vulnerable Domains | 98,144 live websites (100% of Premium Addons for Elementor install base) |
| Vulnerable Versions |
|
| Vulnerable Versions Count | 411 versions ( 100% of all versions) |
Details
- Published - Jan 22, 2026
- Updated - Jan 27, 2026
Credits
- Phat RiO | Patchstack Bug Bounty Program (finder)
CVE References
Website Distribution by Country
Number of websites using CVE-2025-69300 United States | 28,210 websites |
 Germany | 10,326 websites |
 France | 6,351 websites |
 Brazil | 4,595 websites |
 GB | 4,282 websites |
 India | 3,450 websites |
 Italy | 3,352 websites |
 Spain | 2,940 websites |
 Cyprus | 2,636 websites |
 Poland | 2,245 websites |
Website Distribution by TLD
Number of websites using CVE-2025-69300| .com | 41,991 websites |
| .de | 6,111 websites |
| .org | 4,502 websites |
| .com.br | 4,219 websites |
| .fr | 3,267 websites |
| .co.uk | 2,489 websites |
| .it | 2,429 websites |
| .nl | 1,976 websites |
| .pl | 1,681 websites |
| .net | 1,673 websites |
Vulnerable Versions
Vulnerable versions are highlighted in redWebsites affected by CVE-2025-69300
Top websites that are affected by CVE-2025-69300. Please click on the "Contact us" link to get more information.| Domain | Country | Rank | Contacts |
|---|---|---|---|
| ***********.com | United States | *,*** | |
| *********.com |  Israel | *,*** | |
| *********.com | United States | *,*** | |
| ******************.org | United States | *,*** | |
| ********.ca |  Canada | **,*** | |
| ******.com | United States | **,*** | |
| *******************.nl |  Netherlands | **,*** | |
| ********.com | United States | **,*** | |
| ******.com | United States | **,*** | |
| ****************.com | United States | **,*** |
FAQ
A total of 98,144 websites have been identified as vulnerable to CVE-2025-69300, based on global website indexing conducted by WebTechSurvey.
The Premium Addons for Elementor is affected by the CVE-2025-69300 vulnerability.
Premium Addons for Elementor versions up to and including 4.11.63 are vulnerable to CVE-2025-69300.