CVE-2025-12778 | Ultimate Member Widgets for Elementor Plugin up to 2.3 on WordPress handle_filter_users authorization

A vulnerability classified as problematic has been found in Ultimate Member Widgets for Elementor Plugin up to 2.3 on WordPress. Impacted is the function handle_filter_users. The manipulation leads to missing authorization.

This vulnerability is referenced as CVE-2025-12778. Remote exploitation of the attack is possible. No exploit is available.