A vulnerability has been found in WP Review Slider Pro Plugin up to 12.6.8 on WordPress and classified as critical . Affected by this vulnerability is the function wpfb_hidereview_ajax of the component AJAX Handler . Performing a manipulation results in path traversal. This vulnerability was named CVE-2026-8442 . The attack may be initiated remotely. There is no available exploit.