A vulnerability classified as problematic was found in nextendweb Smart Slider 3 Plugin up to 3.5.1.37 on WordPress. The impacted element is an unknown function of the file wp-admin/post-new.php. Executing a manipulation of the argument keyword can lead to information disclosure.

The identification of this vulnerability is CVE-2026-12385. The attack may be launched remotely. There is no exploit available.