CVE-2026-6741 - LatePoint <= 5.4.1 - Authenticated (Agent+) Privilege Escalation to Administrator via 'connect-customer-to-wp-user' Ability
CVE ID :CVE-2026-6741 Published : April 27, 2026, 7:36 p.m. | 25 minutes ago Description :The LatePoint – Calendar Booking Plugin for Appointments and Events plugin for WordPress is vulnerable to Privilege Escalation in versions up to and including 5.4.1. This is due to a missing authorization
ORIGINAL SOURCE →via CVE Feed Latest
ADVERTISEMENT
⚡ STAY AHEAD
Events like this, convergence-verified across 689 sources, land in your inbox every Sunday. Free.
GET THE SUNDAY BRIEFING →RELATED · cyber
- [CYBER] GlassWorm malware attacks return via 73 OpenVSX "sleeper" extensions
- [CYBER] Turning Off AIS While Transiting Hormuz Offers False Sense Of Security, Advises Cydome
- [CYBER] Aave-Led 'DeFi United' Relief Effort Raises $300 Million to Cover Kelp DAO Exploit Losses
- [CYBER] Aave-Led 'DeFi United' Relief Effort Raises $300 Million to Cover Kelp DAO Exploit Losses - Yahoo Finance
- [CYBER] An easy approach to "Identity" on Solana
- [CYBER] UNC6692 Combines Social Engineering, Malware, Cloud Abuse