Medium severity5.4NVD Advisory· Published Dec 16, 2025· Updated Apr 15, 2026
CVE-2025-66166
CVE-2025-66166
Description
Missing Authorization vulnerability in merkulove Lottier for Elementor lottier-elementor allows Exploiting Incorrectly Configured Access Control Security Levels.This issue affects Lottier for Elementor: from n/a through <= 1.0.9.
AI Insight
LLM-synthesized narrative grounded in this CVE's description and references.
Affected products
2<=1.0.9+ 1 more
- (no CPE)range: <=1.0.9
- (no CPE)range: <=1.0.9
Patches
Vulnerability mechanics
References
1News mentions
0No linked articles in our index yet.