CVE-2025-66527 | VanKarWai Lobo Plugin up to 2.8.6 on WordPress authorization

December 9, 2025 Yanac

A vulnerability identified as critical has been detected in VanKarWai Lobo Plugin up to 2.8.6 on WordPress. This impacts an unknown function. The manipulation leads to missing authorization.

This vulnerability is uniquely identified as CVE-2025-66527. The attack is possible to be carried out remotely. No exploit exists.VulDB Recent EntriesRead More

CVE-2025-67551 | Wappointment Plugin up to 2.6.9 on WordPress cross site scripting
CVE-2025-67544 | Get Bowtied Shopkeeper Extender Plugin up to 7.0 on WordPress cross site scripting