CVE-2025-66149 | merkulove UnGrabber Plugin up to 3.1.3 on WordPress authorization

January 1, 2026 Yanac

A vulnerability identified as problematic has been detected in merkulove UnGrabber Plugin up to 3.1.3 on WordPress. This issue affects some unknown processing. The manipulation leads to missing authorization.

This vulnerability is traded as CVE-2025-66149. It is possible to initiate the attack remotely. There is no exploit available.VulDB Recent EntriesRead More

CVE-2025-66152 | merkulove Criptopayer for Elementor Plugin up to 1.0.1 on WordPress authorization
CVE-2025-34467 | fredtempez ZwiiCMS up to 13.6.x Administrative Endpoint locking