Novalnet for WooCommerce: Critical Vulnerability (CVE-2026-57677)


This text was generated using artificial intelligence (AI).According to Patchstack, on July 2, 2026, a critical security vulnerability was discovered in the WordPress plugin Novalnet Payment Gateway for WooCommerce with a CVSS score of 9.8 published. The vulnerability, registered as CVE-2026-57677, affects all versions up to and including 12.10.3 and allows attackers to completely take over an online store without prior authentication.