UnitechPay: Unsecured Access Could Lead to Unauthorized Transactions

Monitor vulnerabilities like this one. Sign up free to get alerted when software you use is affected.

5.3

UnitechPay: Unsecured Access Could Lead to Unauthorized Transactions

CVE-2026-39650

Summary

A security weakness in UnitechPay, a mobile payment system, could allow unauthorized users to access and make transactions under certain configuration conditions. This issue affects versions 1.0.2 and earlier of UnitechPay. To protect your business, update to the latest version of UnitechPay or reconfigure your access controls to ensure secure access levels.

Original title

Missing Authorization vulnerability in Unitech Web UnitechPay unitechpay-paiements-mobile-money allows Exploiting Incorrectly Configured Access Control Security Levels.This issue affects UnitechPay...

Original description

Vulnerability type

CWE-862 Missing Authorization

https://patchstack.com/database/Wordpress/Plugin/unitechpay-paiements-mobile-mon...

Published: 8 Apr 2026 · Updated: 10 Apr 2026 · First seen: 8 Apr 2026