VYPR

CP Image Store with Slideshow

by Codepeople

CVEs (1)

  • CVE-2026-0684MedJan 13, 2026
    risk 0.21cvss 4.3epss 0.00

    The CP Image Store with Slideshow plugin for WordPress is vulnerable to authorization bypass in all versions up to, and including, 1.1.9 due to a logic error in the 'cpis_admin_init' function's permission check. This makes it possible for authenticated attackers, with…