Lucene search
K
Database
Vendors
Products
Years
CVSS
Scanner
Agent Scanning
API Scanning
Manual Audit
Perimeter Scanner
Scanning
Projects
Email
Webhook
Plugins
Resources
Documents
Blog
Glossary
FAQ
Pricing
Contacts
About Us
Partners
Branding Guideline
nessusThis script is Copyright (C) 2020-2024 and is owned by Tenable, Inc. or an Affiliate thereof.WEB_APPLICATION_SCANNING_112388
HistoryMay 14, 2020 - 12:00 a.m.

LearnPress Plugin for WordPress < 3.2.6.9 Multiple Vulnerabilities

2020-05-1400:00:00
This script is Copyright (C) 2020-2024 and is owned by Tenable, Inc. or an Affiliate thereof.
www.tenable.com
10
JSON

The WordPress LearnPress Plugin installed on the remote host is affected by multiple vulnerabilities :

  • A SQL injection vulnerability exists in the _get_items method of the LP_Modal_Search_Items class due to improper validation of user-supplied input. An authenticated, remote attacker can exploit this to inject or manipulate SQL queries in the back-end database, resulting in the disclosure or manipulation of arbitrary data. (CVE-2020-6010)

  • A privilege escalation vulnerability exists in the learn_press_accept_become_a_teacher function due to the code not checking the permissions of the requesting user. An unauthenticated, remote attacker can exploit this, via /wpadmin/, to gain ‘teacher’ access to the application. (CVE-2020-11511)

Note that the scanner has not tested for these issues but has instead relied only on the application’s self-reported version number.

No source data
VendorProductVersionCPE
thimpresslearnpress*cpe:2.3:a:thimpress:learnpress:*:*:*:*:*:wordpress:*:*

Related

nessus 1
openvas 1
thn 1
threatpost 1
cve 2
zdt 2
wpexploit 1
wpvulndb 2
patchstack 2
prion 2
exploitdb 2
packetstorm 2
rapid7blog 1
nessus
nessus
WordPress Plugin 'LearnPress' < 3.2.6.8 Multiple Vulnerabilities
2020-05-01 00:00:00
openvas
openvas
WordPress LearnPress Plugin < 3.2.6.9 Multiple Vulnerabilities
2020-05-05 00:00:00
thn
thn
Critical Bugs Found in 3 Popular e-Learning Plugins for WordPress Sites
2020-04-30 10:06:00
threatpost
threatpost
Critical WordPress e-Learning Plugin Bugs Open Door to Cheating
2020-04-30 10:00:32
cve
cve
CVE-2020-11511
2021-07-30 14:15:00
CVE-2020-6010
2020-04-30 15:15:00
zdt
zdt
WordPress LearnPress 3.2.6.8 Plugin - Privilege Escalation Vulnerability
2021-07-19 00:00:00
WordPress LearnPress 3.2.6.7 Plugin - (current_items) SQL Injection (Authenticated) Vulnerability
2021-07-19 00:00:00
wpexploit
wpexploit
LearnPress < 3.2.6.9 - Privilege Escalation to "LP Instructor"
2020-04-28 00:00:00
wpvulndb
wpvulndb
LearnPress < 3.2.6.9 - Privilege Escalation to "LP Instructor"
2020-04-28 00:00:00
Learnpress < 3.2.6.8 - Authenticated Time Based Blind SQL Injection
2020-04-29 00:00:00
patchstack
patchstack
WordPress LearnPress plugin <= 3.2.6.7 - Privilege Escalation vulnerability
2020-04-29 00:00:00
WordPress LearnPress plugin <= 3.2.6.7 - Authenticated Time Based Blind SQL Injection (SQLi) vulnerability
2020-04-29 00:00:00
prion
prion
Design/Logic Flaw
2021-07-30 14:15:00
Sql injection
2020-04-30 15:15:00
exploitdb
exploitdb
WordPress Plugin LearnPress 3.2.6.8 - Privilege Escalation
2021-07-19 00:00:00
WordPress Plugin LearnPress 3.2.6.7 - &#039;current_items&#039; SQL Injection (Authenticated)
2021-07-19 00:00:00
packetstorm
packetstorm
WordPress LearnPress Privilege Escalation
2021-07-19 00:00:00
WordPress LearnPress SQL Injection
2021-07-19 00:00:00
rapid7blog
rapid7blog
Metasploit Wrap-Up
2021-08-27 19:03:42
JSON
Related for WEB_APPLICATION_SCANNING_112388
nessus1openvas1thn1threatpost1cve2zdt2wpexploit1wpvulndb2patchstack2prion2exploitdb2packetstorm2rapid7blog1