CVE-2026-12657 | LatePoint Plugin up to 5.6.2 on WordPress steps__load_step service_id authorization
A vulnerability classified as critical has been found in LatePoint Plugin up to 5.6.2 on WordPress. Affected by this vulnerability is the function steps__load_step. The manipulation of the argument service_id leads to authorization bypass.
This vulnerability is referenced as CVE-2026-12657. Remote exploitation of the attack is possible. No exploit is available.
It is recommended to upgrade the affected component.VulDB Recent EntriesRead More