21406 matches found
CVE-2025-66142
CVE-2025-66142 affects merkulove Comparimager for Elementor (comparimager-elementor) plugin versions up to and including 1.0.1. It is a Missing Authorization (broken access control) vulnerability that allows exploitation of incorrectly configured access control security levels. Public sources (NV...
CVE-2025-66141
Missing Authorization vulnerability in merkulove Scroller scroller allows Exploiting Incorrectly Configured Access Control Security Levels.This issue affects Scroller: from n/a through = 2.0.2...
CVE-2025-66141
CVE-2025-66141 affects the WordPress plugin merkulove Scroller (Scroller) up to and including version 2.0.2. The issue is a Missing Authorization / Broken Access Control vulnerability allowing access level misconfigurations. Public details from multiple sources (NVD, Red Hat advisory, CVE record)...
CVE-2025-66140 WordPress Uper for Elementor plugin <= 1.0.5 - Broken Access Control vulnerability
Missing Authorization vulnerability in merkulove Uper for Elementor uper-elementor allows Exploiting Incorrectly Configured Access Control Security Levels.This issue affects Uper for Elementor: from n/a through = 1.0.5...
CVE-2025-66139
CVE-2025-66139 describes a Missing Authorization vulnerability in the WordPress plugin Audier For Elementor (Audier Element or Audier For Elementor) that allows exploitation due to incorrectly configured access control security levels. Affected: Audier For Elementor versions up to and including 1...
CVE-2025-66142 WordPress Comparimager for Elementor plugin <= 1.0.1 - Broken Access Control vulnerability
Missing Authorization vulnerability in merkulove Comparimager for Elementor comparimager-elementor allows Exploiting Incorrectly Configured Access Control Security Levels.This issue affects Comparimager for Elementor: from n/a through = 1.0.1...
CVE-2025-66143
CVE-2025-66143 : Missing Authorization in merkulove Crumber crumber-elementor. Affected: Crumber versions up to and including 1.0.10. CVSS v3.1 base score 5.4 (Medium). Remediation: update to a version later than 1.0.10 (as recommended by PT Security). Red Hat and CVE/NVD entries corroborate the ...
CVE-2025-66138
CVE-2025-66138 is a Missing Authorization / Broken Access Control vulnerability in the WordPress plugin merkulove Motionger for Elementor . Affected versions are Motionger for Elementor up to and including 2.0.4. Exploitation would require network access with low privileges and no user interactio...
CVE-2025-66137 WordPress Searcher for Elementor plugin <= 1.0.3 - Broken Access Control vulnerability
Missing Authorization vulnerability in merkulove Searcher for Elementor searcher-elementor allows Exploiting Incorrectly Configured Access Control Security Levels.This issue affects Searcher for Elementor: from n/a through = 1.0.3...
CVE-2025-66135 WordPress Imager for Elementor plugin <= 2.0.4 - Broken Access Control vulnerability
Missing Authorization vulnerability in merkulove Imager for Elementor imager-elementor allows Exploiting Incorrectly Configured Access Control Security Levels.This issue affects Imager for Elementor: from n/a through = 2.0.4...
CVE-2025-66138 WordPress Motionger for Elementor plugin <= 2.0.4 - Broken Access Control vulnerability
Missing Authorization vulnerability in merkulove Motionger for Elementor motionger-elementor allows Exploiting Incorrectly Configured Access Control Security Levels.This issue affects Motionger for Elementor: from n/a through = 2.0.4...
CVE-2025-66136 WordPress Carter for Elementor plugin <= 1.0.2 - Broken Access Control vulnerability
Missing Authorization vulnerability in merkulove Carter for Elementor carter-elementor allows Exploiting Incorrectly Configured Access Control Security Levels.This issue affects Carter for Elementor: from n/a through = 1.0.2...
CVE-2025-66135
Missing Authorization vulnerability in merkulove Imager for Elementor imager-elementor allows Exploiting Incorrectly Configured Access Control Security Levels.This issue affects Imager for Elementor: from n/a through = 2.0.4...
CVE-2025-66135
CVE-2025-66135 is a Missing Authorization (broken access control) vulnerability in merkulove Imager for Elementor (imager-elementor) affecting up to version 2.0.4. Multiple sources (NVD, Red Hat, CVE records) describe an unauthorized access risk due to incorrectly configured access control securi...
CVE-2025-66135 WordPress Imager for Elementor plugin <= 2.0.4 - Broken Access Control vulnerability
Missing Authorization vulnerability in merkulove Imager for Elementor imager-elementor allows Exploiting Incorrectly Configured Access Control Security Levels.This issue affects Imager for Elementor: from n/a through = 2.0.4...
CVE-2025-66136
CVE-2025-66136 is a confirmed Missing Authorization vulnerability in the WordPress plugin Carter for Elementor (Carter for Elementor) affecting versions up to 1.0.2. Public docs describe an access-control misconfiguration that enables exploitation via improper authorization, with the NVD entry no...
CVE-2025-66137
Missing Authorization vulnerability in merkulove Searcher for Elementor searcher-elementor allows Exploiting Incorrectly Configured Access Control Security Levels.This issue affects Searcher for Elementor: from n/a through = 1.0.3...
CVE-2025-66137 WordPress Searcher for Elementor plugin <= 1.0.3 - Broken Access Control vulnerability
Missing Authorization vulnerability in merkulove Searcher for Elementor searcher-elementor allows Exploiting Incorrectly Configured Access Control Security Levels.This issue affects Searcher for Elementor: from n/a through = 1.0.3...
CVE-2025-66138 WordPress Motionger for Elementor plugin <= 2.0.4 - Broken Access Control vulnerability
Missing Authorization vulnerability in merkulove Motionger for Elementor motionger-elementor allows Exploiting Incorrectly Configured Access Control Security Levels.This issue affects Motionger for Elementor: from n/a through = 2.0.4...
CVE-2025-66137
CVE-2025-66137 is a Missing Authorization/Broken Access Control issue in the WordPress plugin “Searcher for Elementor” (merkulove) affecting versions up to and including 1.0.3. Multiple sources (NVD, Red Hat, CVE databases) describe the vulnerability as a Missing Authorization vulnerability in Se...