CVE-2026-40724
Deferred Deferred - Pending Action
CP Client Arbitrary File Download in Client Portal Pro

Publication date: 2026-06-17

Last updated on: 2026-06-17

Assigner: Patchstack

Description
CP Client Arbitrary File Download in Client Portal (Pro) <= 5.6.2 versions.
CVSS Scores
EPSS Scores
Probability:
Percentile:
Meta Information
Published
2026-06-17
Last Modified
2026-06-17
Generated
2026-06-17
AI Q&A
2026-06-17
EPSS Evaluated
N/A
NVD
CVE-2026-40724
EUVD
EUVD-2026-37593
Affected Vendors & Products
Showing 1 associated CPE
Vendor Product Version / Range
patchstack cp_client to 5.6.2 (inc)
Helpful Resources
Exploitability
CWE
CWE Icon
KEV
KEV Icon
CWE ID Description
CWE-22 The product uses external input to construct a pathname that is intended to identify a file or directory that is located underneath a restricted parent directory, but the product does not properly neutralize special elements within the pathname that can cause the pathname to resolve to a location that is outside of the restricted directory.
Attack-Flow Graph
AI Quick Actions
Instant insights powered by AI
Compliance Impact

The vulnerability allows attackers to download sensitive files, including those containing login credentials or backups, which can lead to unauthorized access to personal or protected data.

Such unauthorized disclosure of sensitive information can result in non-compliance with data protection regulations like GDPR and HIPAA, which require safeguarding personal and health-related data against unauthorized access.

Therefore, exploitation of this vulnerability could compromise compliance with these common standards and regulations by exposing sensitive data.

Executive Summary

The WordPress Client Portal (Pro) Plugin, versions 5.6.2 and below, contains an Arbitrary File Download vulnerability (CVE-2026-40724).

This flaw allows attackers to download sensitive files from affected websites, including files that may contain login credentials or backups.

It is classified under OWASP Top 10's A1: Broken Access Control, meaning the vulnerability arises from improper restrictions on what authenticated users can access.

Impact Analysis

This vulnerability can lead to unauthorized disclosure of sensitive information by allowing attackers to download critical files from your website.

Such files may include login credentials or backups, which could be used to further compromise your website or systems.

The vulnerability has a medium severity with a CVSS score of 6.5 and is expected to be exploited in mass campaigns targeting thousands of websites.

Immediate action, such as updating the plugin to version 5.6.3 or applying mitigation rules, is advised to prevent exploitation.

Detection Guidance

This vulnerability allows attackers to download sensitive files from affected websites running the WordPress Client Portal (Pro) Plugin version 5.6.2 or below.

Detection can involve monitoring for unusual HTTP requests attempting to access arbitrary files through the plugin endpoints.

While specific commands are not provided, typical detection methods include:

  • Using web server logs to search for suspicious requests targeting the Client Portal plugin paths.
  • Employing intrusion detection systems (IDS) or web application firewalls (WAF) with rules to detect or block arbitrary file download attempts.
  • Running vulnerability scanners that include checks for this specific CVE.
Mitigation Strategies

Immediate mitigation steps include updating the WordPress Client Portal (Pro) Plugin to version 5.6.3 or later, which contains the patch for this vulnerability.

If updating immediately is not possible, applying a mitigation rule provided by Patchstack to block attacks targeting this vulnerability is advised.

Additionally, seeking assistance from your hosting provider or a developer to implement temporary protections or monitoring is recommended.

Chat Assistant
Ask questions about this CVE
Hi! I’m here to help you understand CVE-2026-40724. Ask me anything about the vulnerability, its impact, or mitigation strategies.
0/70
EPSS Chart