CVE-2025-66143

CVE-2025-66143 : Missing Authorization in merkulove Crumber crumber-elementor. Affected: Crumber versions up to and including 1.0.10. CVSS v3.1 base score 5.4 (Medium). Remediation: update to a version later than 1.0.10 (as recommended by PT Security). Red Hat and CVE/NVD entries corroborate the ...

CVE-2025-66143 WordPress Crumber plugin <= 1.0.10 - Broken Access Control vulnerability

Missing Authorization vulnerability in merkulove Crumber crumber-elementor allows Exploiting Incorrectly Configured Access Control Security Levels.This issue affects Crumber: from n/a through = 1.0.10...

WordPress plugin Crumber has a security vulnerability

WordPress and WordPress plugins are both products of the WordPress Foundation. WordPress is a blog platform developed using the PHP language. This platform allows for the creation of personal blog websites on servers based on PHP and MySQL. A WordPress plugin is an application extension. WordPres...

WordPress Crumber plugin <= 1.0.10 - Broken Access Control vulnerability

Broken Access Control vulnerability discovered by Phat RiO - BlueRock in WordPress Plugin Crumber versions = 1.0.10...