A vulnerability was found in pektsekye Notify Odoo Plugin up to 1.0.1 on WordPress. It has been classified as problematic . This issue affects the function _updateSettings of the component Setting Handler . This manipulation causes cross-site request forgery. The identification of this vulnerability is CVE-2026-8425 . It is possible to initiate the attack remotely. There is no exploit available.