visa-acceptance-solutions-wordpress-auth-bypass-cve-2026-3461
CVE-2026-3461: a WordPress plugin can authenticate users using only a billing email during guest checkout, allowing account takeover and site compromise; immediate checks and mitigations advised.