CVE-2024-9609

The LearnPress Export Import – WordPress extension for LearnPress plugin for WordPress is vulnerable to Reflected Cross-Site Scripting via the 'learnpressimportformserver' parameter in all versions up to, and including, 4.0.4 due to insufficient input sanitization and output escaping. This makes ...

PT-2024-39715 · WordPress · Learnpress Export Import

Name of the Vulnerable Software and Affected Versions: LearnPress Export Import – WordPress extension for LearnPress plugin for WordPress versions up to, and including, 4.0.4 Description: The issue is related to Reflected Cross-Site Scripting via the learnpress import form server parameter due to...