PatchSiren

Knit Pay CVE debriefs

These pages are published after PatchSiren validates generated defensive summaries against stored public CVE and source evidence.

HIGH Knit Pay CVE published 2026-06-15

CVE-2026-49070

CVE-2026-49070 is a HIGH severity vulnerability in the Knit Pay plugin, affecting versions <= 9.4.0.0. The vulnerability is caused by unauthenticated broken access control, which has a CVSS score of 7.5. The vulnerability was published on [cve-org] and additional details can be found on [nvd].