This issue affects Nexi XPay: from n/a through 8.3.1.
Analysis and contextual insights are available on OpenCVE Cloud.
Vendor Solution
Update the WordPress Nexi XPay Plugin to the latest available version (at least 8.3.2).
Tracking
Sign in to view the affected projects.
No advisories yet.
Sun, 21 Jun 2026 09:45:00 +0000
| Type | Values Removed | Values Added |
|---|---|---|
| First Time appeared |
Nexi Payments
Nexi Payments nexi Xpay Wordpress Wordpress wordpress |
|
| Vendors & Products |
Nexi Payments
Nexi Payments nexi Xpay Wordpress Wordpress wordpress |
Thu, 18 Jun 2026 04:45:00 +0000
| Type | Values Removed | Values Added |
|---|---|---|
| Description | Missing Authorization vulnerability in Nexi Payments Nexi XPay allows Exploiting Incorrectly Configured Access Control Security Levels. This issue affects Nexi XPay: from n/a through 8.3.1. | |
| Title | WordPress Nexi XPay plugin <= 8.3.1 - Broken Access Control vulnerability | |
| Weaknesses | CWE-862 | |
| References |
| |
| Metrics |
cvssV3_1
|
Status: PUBLISHED
Assigner: Patchstack
Published:
Updated: 2026-06-17T15:39:00.242Z
Reserved: 2026-06-16T09:21:34.478Z
Link: CVE-2026-54810
Updated: 2026-06-17T15:38:52.400Z
No data.
No data.
OpenCVE Enrichment
Updated: 2026-06-20T22:57:25Z