VYPR

Aiktp

by WordPress

Source repositories

CVEs (1)

  • CVE-2026-1103MedJan 24, 2026
    risk 0.35cvss 5.4epss 0.00

    The AIKTP plugin for WordPress is vulnerable to unauthorized modification of data due to missing authorization checks on the /aiktp/getToken REST API endpoint in all versions up to, and including, 5.0.04. The endpoint uses the 'verify_user_logged_in' as a permission callback,…