CVE-2026-27327

Vulnerability Description

Missing Authorization vulnerability in YayCommerce YayMail – WooCommerce Email Customizer yaymail allows Exploiting Incorrectly Configured Access Control Security Levels.This issue affects YayMail – WooCommerce Email Customizer: from n/a through <= 4.3.2.

Vulnerability Details

Published Date

February 19, 2026

Last Modified

February 20, 2026

CWE ID

CWE-862

Source

NVD

Vendor

YayCommerce

Product

YayMail – WooCommerce Email Customizer

External References

https://patchstack.com/database/Wordpress/Plugin/yaymail/vulnerability/wordpress-yaymail-woocommerce-email-customizer-plugin-4-3-2-broken-access-control-vulnerability?_s_id=cve

Vulnerability Description

Vulnerability Details

External References

Discussion (0)

Add Comment