A vulnerability was found in Nexi Payments Nexi XPay Plugin up to 8.3.1 on WordPress. It has been classified as problematic . Affected is an unknown function. The manipulation leads to missing authorization. This vulnerability is documented as CVE-2026-54810 . The attack can be initiated remotely. There is not any exploit available.