CVE Catalog

CVE-2026-40785

HighCVSS 7.1
Published: Updated: Translated: NVD NIST

Exploitation Probability (EPSS)

Low risk
0.39%

30th percentile - higher than 30% of all known CVEs

Summary

AutomatorWP versions up to 5.6.7 have a vulnerability in subscriber authentication, which may lead to unauthorized access.

Risk Assessment

Organizations may be exposed to unauthorized user actions, potentially resulting in data loss or privacy breaches.

Recommendation

It is recommended to update AutomatorWP to the latest version to mitigate this vulnerability.

Original NVD description (English source)

Subscriber Broken Authentication in AutomatorWP <= 5.6.7 versions.

Vulnerability data from NVD (NIST) · CISA KEV · EPSS