PT-2025-51425 · Elementor+1 · Elementor+1

Published

2025-12-16

Updated

2025-12-17

CVE-2025-66162

CVSS v3.1

5.4

Medium

Vector

AV:N/AC:L/PR:L/UI:N/S:U/C:L/I:L/A:N

Name of the Vulnerable Software and Affected Versions merkulove Spoter for Elementor versions through 1.04

Description An issue exists in merkulove Spoter for Elementor related to incorrectly configured access control security levels, potentially allowing unauthorized access. The issue involves a missing authorization check.

Recommendations Update merkulove Spoter for Elementor to a version newer than 1.04.

Fix

Missing Authorization

Found an issue in the description? Have something to add? Feel free to write us 👾

dbugs@ptsecurity.com

Weakness Enumeration

CWE-862

Related Identifiers

CVE-2025-66162

Affected Products

Elementor

Spoter For Elementor

PT-2025-51425 · Elementor+1 · Elementor+1

CVE-2025-66162

Weakness Enumeration

Related Identifiers

Affected Products

References · 4