CVE-2025-7038
LatePoint <= 5.1.94 - Unauthenticated Authentication Bypass via load_step Function
CVSS Score
8.2
EPSS Score
0.0%
EPSS Percentile
0th
The LatePoint plugin for WordPress is vulnerable to Authentication Bypass due to insufficient identity verification within the steps__load_step route of the latepoint_route_call AJAX endpoint in all versions up to, and including, 5.1.94. The endpoint reads the client-supplied customer email and related customer fields before invoking the internal login handler without verifying login status, capability checks, or a valid AJAX nonce. This makes it possible for unauthenticated attackers to log into any customer’s account.
| CWE | CWE-288 |
| Vendor | latepoint |
| Product | latepoint – calendar booking plugin for appointments and events |
| Published | Sep 30, 2025 |
| Last Updated | Apr 8, 2026 |
Stay Ahead of the Next One
Get instant alerts for latepoint latepoint – calendar booking plugin for appointments and events
Be the first to know when new high vulnerabilities affecting latepoint latepoint – calendar booking plugin for appointments and events are published — delivered to Slack, Telegram or Discord.
Get Free Alerts →
Free · No credit card · 60 sec setup
CVSS v3 Breakdown
CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:L/A:N Attack Vector
Attack Complexity
Privileges Required
User Interaction
Scope
Confidentiality
Integrity
Availability
Affected Versions
latepoint / LatePoint – Calendar Booking Plugin for Appointments and Events
0 ≤ 5.1.94
References
wordfence.com: https://www.wordfence.com/threat-intel/vulnerabilities/id/d7389e17-a357-481a-8716-3a93cb6afa7c?source=cve wordpress.org: https://wordpress.org/plugins/latepoint/#developers plugins.trac.wordpress.org: https://plugins.trac.wordpress.org/browser/latepoint/tags/5.1.93/latepoint.php plugins.trac.wordpress.org: https://plugins.trac.wordpress.org/browser/latepoint/tags/5.1.93/lib/controllers/steps_controller.php plugins.trac.wordpress.org: https://plugins.trac.wordpress.org/changeset?sfp_email=&sfph_mail=&reponame=&old=3366851%40latepoint&new=3366851%40latepoint&sfp_email=&sfph_mail=
Credits
wesley