WordPress LearnPress Plugin <= 4.2.5.7 is vulnerable to Remote Code Execution (RCE)

Software LearnPress Type Plugin Vulnerable versions = 4.2.5.7 Fixed in 4.2.5.8 OWASP Top 10 A3: Injection Classification Remote Code Execution RCE CVE CVE-2023-6634 Patch priority High CVSS severity High 8.1 Developer Claim ownership PSID acb9af544a85 Credits hir0ot Required privilege...

VulnCheck KEV: CVE-2023-6634

The LearnPress plugin for WordPress is vulnerable to Command Injection in all versions up to, and including, 4.2.5.7 via the getcontent function. This is due to the plugin making use of the calluserfunc function with user input. This makes it possible for unauthenticated attackers to execute...

LearnPress < 4.2.5.8 - Subscriber+ Arbitrary Course Progress Disclosure

Description The plugin is vulnerable to Insecure Direct Object Reference in the /wp-json/lp/v1/profile/course-tab REST API due to missing validation on the 'userID' user controlled key. This makes it possible for authenticated attackers, with subscriber-level access and above, to retrieve the...

LearnPress < 4.2.5.8 - Unauthenticated SQLi

Description The plugin does not properly sanitise and escape the orderby parameter before using it in a SQL statement, leading to a SQL injection exploitable by unauthenticated users...

PT-2024-4517 · WordPress · Learnpress

Name of the Vulnerable Software and Affected Versions: LearnPress plugin for WordPress versions up to, and including, 4.2.5.7 Description: The issue is related to the LearnPress plugin for WordPress, which is vulnerable to command injection in all versions up to, and including, 4.2.5.7. This...

WordPress LearnPress Plugin <= 4.2.5.7 is vulnerable to SQL Injection

Software LearnPress Type Plugin Vulnerable versions = 4.2.5.7 Fixed in 4.2.5.8 OWASP Top 10 A1: Injection Classification SQL Injection CVE CVE-2023-6567 Patch priority High CVSS severity High 9.3 Developer Claim ownership PSID 9380e4991dc4 Credits hir0ot Required privilege Unauthenticated Publish...

WordPress LearnPress Plugin <= 4.2.5.7 is vulnerable to Insecure Direct Object References (IDOR)

Software LearnPress Type Plugin Vulnerable versions = 4.2.5.7 Fixed in 4.2.5.8 OWASP Top 10 A1: Broken Access Control Classification Insecure Direct Object References IDOR CVE CVE-2023-6223 Patch priority Low CVSS severity Low 4.3 Developer Claim ownership PSID d81a8f21bcf7 Credits lttn Required...

LearnPress < 4.2.5.5 - Reflected Cross-Site Scripting

Description The plugin does not sanitise and escape user input before outputting it back in the page, leading to a Reflected Cross-Site Scripting which could be used against high privilege users such as admin. PoC Make a logged in admin open v...

LearnPress < 4.2.5.5 - Reflected Cross-Site Scripting

Description The plugin does not sanitise and escape user input before outputting it back in the page, leading to a Reflected Cross-Site Scripting which could be used against high privilege users such as admin. Make a logged in admin open v 4.2.5.2 -...

The vulnerability of the LearnPress plugin of the WordPress content management system allows a hacker to carry out XSS attacks.

The vulnerability of the LearnPress plugin for WordPress content management systems exists due to the lack of measures taken to protect the website’s structure. Exploiting this vulnerability allows a malicious actor to carry out XSS attacks remotely...

The vulnerability of the list_courses() function in the LearnPress plugin of the WordPress content management system allows a hacker to gain unauthorized access to protected information.

The vulnerability of the listcourses function in the LearnPress plugin of the WordPress content management system is related to deficiencies in the path name limitation for accessing the restricted catalog. This issue affects the processing of $templatepaginationpath, $templatepath, and...

WordPress LearnPress Plugin < 4.2.5.4 is vulnerable to Cross Site Scripting (XSS)

Software LearnPress Type Plugin Vulnerable versions 4.2.5.4 Fixed in 4.2.5.4 OWASP Top 10 A7: Cross-Site Scripting XSS Classification Cross Site Scripting XSS CVE N/A Patch priority Medium CVSS severity Medium 7.1 Developer Claim ownership PSID 2712e1677919 Credits Unknown Required privilege...

Exploit for SQL Injection in Thimpress Learnpress

CVE-2022-45808 LearnPress Plugin 4.2.0 - Unauthenticated...

Exploit for Unrestricted Upload of File with Dangerous Type in Thimpress Learnpress

CVE-2022-47615 LearnPress Plugin 4.2.0 - Unauthenticated...

WordPress LearnPress Plugin <= 4.2.3 is vulnerable to Broken Access Control

Software LearnPress Type Plugin Vulnerable versions = 4.2.3 Fixed in 4.2.3.1 OWASP Top 10 A5: Broken Access Control Classification Broken Access Control CVE CVE-2023-36516 Patch priority High CVSS severity High 7.6 Developer Claim ownership PSID 9d39c7dfcdce Credits Rafie Muhammad Patchstack...

WordPress LearnPress Plugin <= 4.2.3 is vulnerable to Broken Access Control

Software LearnPress Type Plugin Vulnerable versions = 4.2.3 Fixed in 4.2.3.1 OWASP Top 10 A5: Broken Access Control Classification Broken Access Control CVE CVE-2023-36515 Patch priority High CVSS severity High 7.3 Developer Claim ownership PSID 5c7b12ada2f1 Credits Rafie Muhammad Patchstack...

CVE-2023-30487

Unauth. Reflected Cross-Site Scripting XSS vulnerability in ThimPress LearnPress Export Import plugin = 4.0.2 versions...

CVE-2023-30487

Unauth. Reflected Cross-Site Scripting XSS vulnerability in ThimPress LearnPress Export Import plugin = 4.0.2 versions...

Cross site scripting

Unauth. Reflected Cross-Site Scripting XSS vulnerability in ThimPress LearnPress Export Import plugin = 4.0.2 versions...

CVE-2023-30487 WordPress LearnPress Export Import Plugin <= 4.0.2 is vulnerable to Cross Site Scripting (XSS)

Unauth. Reflected Cross-Site Scripting XSS vulnerability in ThimPress LearnPress Export Import plugin = 4.0.2 versions...