CVE Catalog
CVE-2026-49062
HighCVSS 8.8Exploitation Probability (EPSS)
Low risk0.30%
21th percentile — higher than 21% of all known CVEs
Summary
A vulnerability in WP Engine Faust.Js allows authentication bypass via an alternate path or channel, enabling password recovery exploitation.
Risk Assessment
Exploitation of this vulnerability may lead to unauthorized access to user accounts, posing a serious threat to data security.
Recommendation
It is recommended to update Faust.Js to the latest version to mitigate this vulnerability and implement additional security measures to protect user accounts.
Original NVD description (English source)
Authentication Bypass Using an Alternate Path or Channel vulnerability in WP Engine Faust.Js allows Password Recovery Exploitation. This issue affects Faust.Js: from n/a through 1.8.7.

