CVE-2026-12657 | LatePoint Plugin up to 5.6.2 on WordPress steps__load_step service_id authorization

SecurityVulns

A vulnerability classified as critical has been found in LatePoint Plugin up to 5.6.2 on WordPress. Affected by this vulnerability is the function steps__load_step. The manipulation of the argument service_id leads to authorization bypass.

This vulnerability is referenced as CVE-2026-12657. Remote exploitation of the attack is possible. No exploit is available.

It is recommended to upgrade the affected component.VulDB Recent EntriesRead More