CYBERHAWK / CVE / CVE-2026-4100

CVE-2026-4100

Paid Memberships Pro WordPress Plugin

HIGH CVSS 7.1 vibe

The flaw

Missing capability checks allow unauthorized Stripe webhook configuration changes.

Update to version 3.6.6 or later

NVD CISA KEV OSV GitHub Advisory MITRE News search

First seen 2026-05-08 · Tracked by PickBits CyberHawk · Weekly CVE digest

← All CVEs RSS Scheduled audits