CVE-2026-7448 | LatePoint Plugin up to 5.5.0 on WordPress Appointment first_name cross site scripting

A vulnerability has been found in LatePoint Plugin up to 5.5.0 on WordPress and classified as problematic. This vulnerability affects unknown code of the component Appointment Handler. Performing a manipulation of the argument first_name results in cross site scripting.

This vulnerability is reported as CVE-2026-7448. The attack is possible to be carried out remotely. No exploit exists.VulDB Recent EntriesRead More