CVE Catalog

CVE-2026-54847

HighCVSS 7.5
Published: Updated: Translated: NVD NIST

Summary

The Stylish Cost Calculator plugin in versions 8.3.9 and earlier contains a broken access control vulnerability that allows an unauthenticated attacker to bypass authorization. This vulnerability can lead to unauthorized access to cost calculator functions.

Risk Assessment

The risk involves the possibility of manipulating cost calculation data by unauthorized individuals, which may result in information leakage or service disruption.

Recommendation

It is recommended to immediately update the Stylish Cost Calculator plugin to the latest available version that fixes this vulnerability.

Original NVD description (English source)

Unauthenticated Broken Access Control in Stylish Cost Calculator <= 8.3.9 versions.

Vulnerability data from NVD (NIST) · CISA KEV · EPSS