A vulnerability, which was classified as problematic , was found in klamra22 Klamra Paycal for Aspaclaria Plugin up to 1.1.4 on WordPress. This vulnerability affects unknown code. The manipulation of the argument invoice_id results in authorization bypass. This vulnerability is reported as CVE-2026-8611 . The attack can be launched remotely. No exploit exists. You should upgrade the affected component.