Description
CP Client Arbitrary File Download in Client Portal (Pro) <= 5.6.2 versions.
Published: 2026-06-17
Score: 6.5 Medium
EPSS: < 1% Very Low
KEV: No
Impact: n/a
Action: n/a
AI Analysis

Impact

The vulnerability enables the download of arbitrary files from the server due to a failure to validate the requested file path. This weakness is classified as CWE‑22 and can lead to disclosure of configuration files, database exports, or other confidential data stored on the web host. The impact is primarily a breach of confidentiality, potentially compromising system integrity if the attacker obtains files that facilitate further exploitation.

Affected Systems

WordPress installations that use the Client Portal (Pro) plugin with version 5.6.2 or earlier. The plugin is developed by Client Portal Ltd. and is commonly deployed in WordPress environments that provide client portals.

Risk and Exploitability

The CVSS score of 6.5 indicates moderate to high severity. The EPSS score is not available, so the current exploitation probability is unknown, but the absence of a CISA KEV listing suggests no publicly known exploits at this time. The likely attack vector is a web request to the plugin’s download endpoint, which can be triggered from any authenticated or unauthenticated user depending on the plugin configuration. If exploited, the attacker could retrieve arbitrary files, leading to potential data loss or release of sensitive information.

Generated by OpenCVE AI on June 18, 2026 at 14:06 UTC.

Remediation

Vendor Solution

Update the WordPress Client Portal (Pro) Plugin to the latest available version (at least 5.6.3).


OpenCVE Recommended Actions

  • Update the Client Portal (Pro) WordPress plugin to version 5.6.3 or newer.
  • Restrict access to the plugin’s file download functionality by ensuring only authorized users can trigger download requests or disable the feature if it is not needed.
  • If a patch cannot be applied immediately, temporarily block the download endpoint or disable the plugin until the update is available.

Generated by OpenCVE AI on June 18, 2026 at 14:06 UTC.

Tracking

Sign in to view the affected projects.

Advisories

No advisories yet.

History

Sun, 21 Jun 2026 09:45:00 +0000

Type Values Removed Values Added
First Time appeared Client Portal Ltd.
Client Portal Ltd. client Portal (pro)
Wordpress
Wordpress wordpress
Vendors & Products Client Portal Ltd.
Client Portal Ltd. client Portal (pro)
Wordpress
Wordpress wordpress

Thu, 18 Jun 2026 04:45:00 +0000

Type Values Removed Values Added
Metrics ssvc

{'options': {'Automatable': 'no', 'Exploitation': 'none', 'Technical Impact': 'partial'}, 'version': '2.0.3'}


Wed, 17 Jun 2026 11:15:00 +0000

Type Values Removed Values Added
Description CP Client Arbitrary File Download in Client Portal (Pro) <= 5.6.2 versions.
Title WordPress Client Portal (Pro) plugin <= 5.6.2 - Arbitrary File Download vulnerability
Weaknesses CWE-22
References
Metrics cvssV3_1

{'score': 6.5, 'vector': 'CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:H/I:N/A:N'}


Subscriptions

Client Portal Ltd. Client Portal (pro)
Wordpress Wordpress
cve-icon MITRE

Status: PUBLISHED

Assigner: Patchstack

Published:

Updated: 2026-06-17T12:46:08.075Z

Reserved: 2026-04-15T09:19:20.453Z

Link: CVE-2026-40724

cve-icon Vulnrichment

Updated: 2026-06-17T12:46:03.008Z

cve-icon NVD

No data.

cve-icon Redhat

No data.

cve-icon OpenCVE Enrichment

Updated: 2026-06-20T23:04:21Z

Weaknesses
  • CWE-22

    Improper Limitation of a Pathname to a Restricted Directory ('Path Traversal')