CVE Catalog

CVE-2026-48873

HighCVSS 7.5
Published: Updated: Translated: NVD NIST

Exploitation Probability (EPSS)

Low risk
0.24%

15th percentile - higher than 15% of all known CVEs

Summary

Montonio for WooCommerce versions up to 10.1.2 have a vulnerability in access control that allows unauthorized access to resources.

Risk Assessment

Organizations may be exposed to unauthorized access to sensitive data, potentially leading to data loss or privacy breaches.

Recommendation

It is recommended to update to the latest version of Montonio for WooCommerce to mitigate this vulnerability.

Original NVD description (English source)

Unauthenticated Broken Access Control in Montonio for WooCommerce <= 10.1.2 versions.

Vulnerability data from NVD (NIST) · CISA KEV · EPSS