iPOSpays Gateway WC: Incorrect Access Control Exposes Sensitive Data

Monitor vulnerabilities like this one. Sign up free to get alerted when software you use is affected.

iPOSpays Gateway WC: Incorrect Access Control Exposes Sensitive Data

CVE-2026-39608

Summary

The iPOSpays Gateway WC has a security weakness that could allow unauthorized access to sensitive information. If not configured properly, users may be able to view or manipulate data they shouldn't be able to see or change. Make sure to review and correct access control settings for the iPOSpays Gateway WC.

Original title

Missing Authorization vulnerability in iPOSPays iPOSpays Gateways WC ipospays-gateways-wc allows Exploiting Incorrectly Configured Access Control Security Levels.This issue affects iPOSpays Gateway...

Original description

Vulnerability type

CWE-862 Missing Authorization

https://patchstack.com/database/Wordpress/Plugin/ipospays-gateways-wc/vulnerabil...

Published: 8 Apr 2026 · Updated: 9 Apr 2026 · First seen: 8 Apr 2026