Critical flaw in WordPress add-on for Elementor exploited in attacks

Attackers are exploiting a critical-severity privilege escalation vulnerability (CVE-2025-8489) in the King Addons for Elementor plugin for WordPress, which lets them obtain administrative permissions ...
The Hacker News

WordPress King Addons Flaw Under Active Attack Lets Hackers Make Admin Accounts

A critical security flaw impacting a WordPress plugin known as King Addons for Elementor has come under active exploitation ...

WordPress’s vibe-coding experiment, Telex, has already been put to real-world use

Though WordPress's Telex is still an experiment, the vibe coding software has already been used to help build real-world ...