A vulnerability has been found in ntbyk JTL-Connector for WooCommerce Plugin up to 2.4.1 on WordPress and classified as critical . Affected by this vulnerability is the function JtlConnectorAdmin::save of the component Setting Handler . The manipulation leads to missing authorization. This vulnerability is referenced as CVE-2026-9234 . Remote exploitation of the attack is possible. No exploit is available.