Vulnerabilities

CVE-2026-1537 - LatePoint – Calendar Booking Plugin for Appointments and Events <= 5.2.6 - missin...

2026-02-12 0 views admin

CVE ID : CVE-2026-1537 Published : Feb. 12, 2026, 2:23 a.m. | 1 hour, 11 minutes ago Description : The LatePoint – Calendar Booking Plugin for Appointments and Events plugin for WordPress is vulnerable to unauthorized access of data due to a missing capability check on the load_step() function in all versions up to, and including, 5.2.6. This makes it possible for unauthenticated attackers to view booking information including customer names, email addresses, phone numbers, appointment times, and service details. Severity: 0.0 | NA Visit the link for more details, such as CVSS details, affected products, timeline, and more...

CVE Details

CVE ID

CVE-2026-1537

Published

Feb. 12, 2026

Affected Product: WordPress

🏷️ Tags

cvevulnerabilitysecuritycybersecuritycve-2026-1537wordpress

CVE-2026-1537 - LatePoint – Calendar Booking Plugin for Appointments and Events <= 5.2.6 - missin...

CVE Details

🏷️ Tags

More from Vulnerabilities

CVE-2026-1729 - AdForest <= 6.0.12 - authentication bypass

CVE-2026-26234 - JUNG Smart Visu Server - Improper Neutralization of HTTP Headers for Scripting S...

CVE-2026-26235 - JUNG Smart Visu Server 1.1.1050 - 'JUNG Smart Visu Server' Missing Authentication

CVE-2026-0969 - Arbitrary code execution in React server-side rendering of untrusted MDX content

Trending

CVE-2025-61481: Critical Remote Code Execution Vulnerability in MikroTik RouterOS & SwitchOS

CVE-2025-43939: Dell Unity OS Command Injection (High)

Google disputes false claims of massive Gmail data breach

Microsoft: DNS outage impacts Azure and Microsoft 365 services

3.5B Accounts, 1 Critical Flaw: Meta Closes WhatsApp Data-Harvesting