CVE-2025-11086

HIGH 8.1

Academy LMS Pro <= 3.3.7 - Unauthenticated Privilege Escalation via Social Login Addon

CVSS Score

8.1

EPSS Score

0.0%

EPSS Percentile

0th

The Academy LMS – WordPress LMS Plugin for Complete eLearning Solution plugin for WordPress is vulnerable to privilege escalation in all versions up to, and including, 3.3.7. This is due to the plugin not properly validating a user's role prior to registering a user via the Social Login addon. This makes it possible for unauthenticated attackers to update their role to Administrator when registering on the site.

CWE	CWE-269
Vendor	academylms
Product	academy lms pro
Published	Oct 22, 2025
Last Updated	Apr 8, 2026

Stay Ahead of the Next One

Get instant alerts for academylms academy lms pro

Be the first to know when new high vulnerabilities affecting academylms academy lms pro are published — delivered to Slack, Telegram or Discord.

Get Free Alerts → Free · No credit card · 60 sec setup

CVSS v3 Breakdown

CVSS:3.1/AV:N/AC:H/PR:N/UI:N/S:U/C:H/I:H/A:H

Attack Vector

Attack Complexity

Privileges Required

User Interaction

Scope

Confidentiality

Integrity

Availability

Affected Versions

academylms / Academy LMS Pro

0 ≤ 3.3.7

References

NVD ↗ CVE.org ↗ EPSS Data ↗

wordfence.com: https://www.wordfence.com/threat-intel/vulnerabilities/id/0f42f0be-5386-448b-9e65-5d2584cc2175?source=cve academylms.net: https://academylms.net/ academylms.net: https://academylms.net/whats-new/

Credits

Thái An