CVE-2025-24662 WordPress LearnDash LMS Plugin <= 4.20.0.1 - Broken Access Control vulnerability

Missing Authorization vulnerability in LearnDash LearnDash LMS allows Exploiting Incorrectly Configured Access Control Security Levels.This issue affects LearnDash LMS: from n/a through 4.20.0.1...

WordPress LearnDash LMS - Reports Free plugin <= 1.8.2 - Missing Authorization to Plugin Settings Update vulnerability

WordPress LearnDash LMS - Reports Free plugin = 1.8.2 - Missing Authorization to Plugin Settings Update vulnerability discovered by Lucio Sá in WordPress Plugin LearnDash LMS – Reports versions = 1.8.2...

WordPress LearnDash LMS – Reports Plugin <= 1.8.2 is vulnerable to Broken Access Control

Software LearnDash LMS – Reports Type Plugin Vulnerable versions = 1.8.2 Fixed in N/A OWASP Top 10 A5: Broken Access Control Classification Broken Access Control CVE CVE-2024-5648 Patch priority Low CVSS severity Low 5.4 Developer Claim ownership PSID 36a198e999f6 Credits Lucio Sá Required...

WordPress LearnDash LMS Plugin <= 4.10.2 is vulnerable to Sensitive Data Exposure

Software LearnDash LMS Type Plugin Vulnerable versions = 4.10.2 Fixed in 4.10.3 OWASP Top 10 A3: Sensitive Data Exposure Classification Sensitive Data Exposure CVE CVE-2024-1208 Patch priority Low CVSS severity Low 5.3 Developer Claim ownership PSID 27fca665f224 Credits Karl Emil Nikka Required...