LottieFiles: Users Can Access Files Without Permission

Monitor vulnerabilities like this one. Sign up free to get alerted when software you use is affected.

7.3

LottieFiles: Users Can Access Files Without Permission

CVE-2025-68043

Summary

A security issue in LottieFiles allows unauthorized users to access certain files. This is a concern because it could lead to sensitive information being accessed by people who shouldn't have access to it. Update to the latest version of LottieFiles (version 3.0.1 or later) to fix this issue.

Original title

Missing Authorization vulnerability in LottieFiles LottieFiles lottiefiles allows Exploiting Incorrectly Configured Access Control Security Levels.This issue affects LottieFiles: from n/a through <...

Original description

nvd CVSS3.1 7.3

Vulnerability type

CWE-862 Missing Authorization

https://patchstack.com/database/Wordpress/Plugin/lottiefiles/vulnerability/wordp...

Published: 20 Feb 2026 · Updated: 11 Mar 2026 · First seen: 6 Mar 2026