CVE Catalog

CVE-2026-42655

MediumCVSS 5.9
Published: Updated: Translated: NVD NIST

Exploitation Probability (EPSS)

Low risk
0.25%

16th percentile - higher than 16% of all known CVEs

Summary

Unauthenticated bypass vulnerability in Best Payments plugin for WordPress versions up to 4.6.19.

Risk Assessment

Organizations may be exposed to unauthorized access to plugin features, potentially leading to data leaks or other malicious activities.

Recommendation

It is recommended to update the Best Payments plugin to the latest version to mitigate this vulnerability.

Original NVD description (English source)

Unauthenticated Bypass Vulnerability in Best Payments Plugin for WP <= 4.6.19 versions.

Vulnerability data from NVD (NIST) · CISA KEV · EPSS