A vulnerability classified as critical has been found in wp.insider Affiliates Manager Plugin up to 2.9.49 on WordPress. Affected by this vulnerability is an unknown functionality. This manipulation causes missing authorization.
This vulnerability is registered as CVE-2026-57654. Remote exploitation of the attack is possible. No exploit is available.
