A vulnerability labeled as critical has been found in FluxBuilder MStore API Plugin up to 4.18.4 on WordPress. This issue affects some unknown processing. Executing a manipulation can lead to authentication bypass using alternate channel. This vulnerability is handled as CVE-2026-54817 . The attack can be executed remotely. There is not any exploit available.