CVE-2025-11086: CWE-269 Improper Privilege Management in academylms Academy LMS Pro
The Academy LMS – WordPress LMS Plugin for Complete eLearning Solution plugin for WordPress is vulnerable to privilege escalation in all versions up to, and including, 3.3.7. This is due to the plugin not properly validating a user's role prior to registering a user via the Social Login addon. This makes it possible for unauthenticated attackers to update their role to Administrator when registering on the site.
AI Analysis
Technical Summary
The Academy LMS Pro WordPress plugin (up to version 3.3.7) contains a privilege escalation vulnerability (CWE-269) due to improper validation of user roles in the Social Login addon. Specifically, the plugin fails to verify the role assigned to a user during registration, enabling unauthenticated attackers to register and gain Administrator privileges. This vulnerability has a CVSS 3.1 base score of 8.1, indicating high impact on confidentiality, integrity, and availability.
Potential Impact
Successful exploitation allows unauthenticated attackers to escalate their privileges to Administrator on the affected WordPress site. This grants full control over the site, including the ability to modify content, manage users, and potentially deploy further malicious actions. The vulnerability affects all versions up to and including 3.3.7 of the plugin.
Mitigation Recommendations
Patch status is not yet confirmed — check the vendor advisory for current remediation guidance. Until an official fix is released, restrict or disable the Social Login addon if possible, and monitor for updates from the vendor. Avoid allowing untrusted users to register via social login to reduce risk.
CVE-2025-11086: CWE-269 Improper Privilege Management in academylms Academy LMS Pro
Description
The Academy LMS – WordPress LMS Plugin for Complete eLearning Solution plugin for WordPress is vulnerable to privilege escalation in all versions up to, and including, 3.3.7. This is due to the plugin not properly validating a user's role prior to registering a user via the Social Login addon. This makes it possible for unauthenticated attackers to update their role to Administrator when registering on the site.
AI-Powered Analysis
Machine-generated threat intelligence
Technical Analysis
The Academy LMS Pro WordPress plugin (up to version 3.3.7) contains a privilege escalation vulnerability (CWE-269) due to improper validation of user roles in the Social Login addon. Specifically, the plugin fails to verify the role assigned to a user during registration, enabling unauthenticated attackers to register and gain Administrator privileges. This vulnerability has a CVSS 3.1 base score of 8.1, indicating high impact on confidentiality, integrity, and availability.
Potential Impact
Successful exploitation allows unauthenticated attackers to escalate their privileges to Administrator on the affected WordPress site. This grants full control over the site, including the ability to modify content, manage users, and potentially deploy further malicious actions. The vulnerability affects all versions up to and including 3.3.7 of the plugin.
Mitigation Recommendations
Patch status is not yet confirmed — check the vendor advisory for current remediation guidance. Until an official fix is released, restrict or disable the Social Login addon if possible, and monitor for updates from the vendor. Avoid allowing untrusted users to register via social login to reduce risk.
Technical Details
- Data Version
- 5.1
- Assigner Short Name
- Wordfence
- Date Reserved
- 2025-09-26T18:36:19.026Z
- Cvss Version
- 3.1
- State
- PUBLISHED
Threat ID: 68f8c035f0152f21d78f1008
Added to database: 10/22/2025, 11:29:57 AM
Last enriched: 4/9/2026, 8:48:41 PM
Last updated: 5/10/2026, 8:33:18 AM
Views: 207
Community Reviews
0 reviewsCrowdsource mitigation strategies, share intel context, and vote on the most helpful responses. Sign in to add your voice and help keep defenders ahead.
Want to contribute mitigation steps or threat intel context? Sign in or create an account to join the community discussion.
Actions
Updates to AI analysis require Pro Console access. Upgrade inside Console → Billing.
Need more coverage?
Upgrade to Pro Console for AI refresh and higher limits.
For incident response and remediation, OffSeq services can help resolve threats faster.
Latest Threats
Check if your credentials are on the dark web
Instant breach scanning across billions of leaked records. Free tier available.