CVE-2026-3208 | mercadopago Mercado Pago payments for WooCommerce Plugin up to 8.7.11 on WordPress WooCommerce API Endpoint mp_pix_image authorization

A vulnerability marked as problematic has been reported in mercadopago Mercado Pago payments for WooCommerce Plugin up to 8.7.11 on WordPress. This affects the function mp_pix_image of the component WooCommerce API Endpoint. The manipulation leads to missing authorization.

This vulnerability is listed as CVE-2026-3208. The attack may be initiated remotely. There is no available exploit.

It is suggested to upgrade the affected component.VulDB Recent EntriesRead More