cleantalk
Vulnerabilities and Security Researches

LottieFiles – Lottie block for Gutenberg, CVE-2025-68043

CVE, Research URL

CVE-2025-68043

Home page URL

Security reports for LottieFiles – Lottie block for Gutenberg

Application

LottieFiles – Lottie block for Gutenberg

Published on
Feb 20, 2026
Research Description
Missing Authorization vulnerability in LottieFiles LottieFiles lottiefiles allows Exploiting Incorrectly Configured Access Control Security Levels.This issue affects LottieFiles: from n/a through <= 3.0.0.
Affected versions
max 3.0.0.
Status
vulnerable
Previous vulnerability researches
LottieFiles &#8211; Lottie block for Gutenberg (CVE-2025-68043) , Feb 28, 2026
LottieFiles &#8211; Lottie block for Gutenberg (CVE-2026-0717) , Apr 16, 2026
New vulnerability
WP Shortcodes Plugin — Shortcodes Ultimate (CVE-2026-3885) , Apr 16, 2026
Royal Elementor Addons and Templates (CVE-2026-40763) , Apr 16, 2026
WP Google Street View (with 360° virtual tour) &amp; Google maps + Local SEO (CVE-2026-0563) , Apr 16, 2026
AcyMailing &#8211; An Ultimate Newsletter Plugin and Marketing Automation Solution for WordPress (CVE-2026-3614) , Apr 16, 2026
Token of Trust: AI Identity Verification, Age Verification, and KYC (CVE-2026-2834) , Apr 16, 2026