PatchSiren

peachpayments CVE debriefs

These pages are published after PatchSiren validates generated defensive summaries against stored public CVE and source evidence.

MEDIUM peachpayments CVE published 2026-07-13

CVE-2026-57408

A Missing Authorization vulnerability was found in the Peach Payments Gateway wc-peach-payments-gateway plugin. This issue allows for Exploiting Incorrectly Configured Access Control Security Levels and affects the plugin from n/a through version 4.0.2. The vulnerability has a CVSS score of 6.5 and is classified as MEDIUM severity. Users of Peach Payments Gateway wc-peach-payments-gateway plugin, especial [truncated]