CVE Catalog
CVE-2026-40785
HighCVSS 7.1Exploitation Probability (EPSS)
Low risk0.39%
30th percentile - higher than 30% of all known CVEs
Summary
AutomatorWP versions up to 5.6.7 have a vulnerability in subscriber authentication, which may lead to unauthorized access.
Risk Assessment
Organizations may be exposed to unauthorized user actions, potentially resulting in data loss or privacy breaches.
Recommendation
It is recommended to update AutomatorWP to the latest version to mitigate this vulnerability.
Original NVD description (English source)
Subscriber Broken Authentication in AutomatorWP <= 5.6.7 versions.

