CVE-2026-49072

Description

Unauthenticated Broken Access Control in WooCommerce Anti-Fraud <= 7.2.6 versions.

References

• https://patchstack.com/database/wordpress/plugin/woocommerce-anti-fraud/vulnerability/wordpress-woocommerce-anti-fraud-plugin-7-2-6-broken-access-control-vulnerability?_s_id=cve