CVE-2019-15896
CVE-2019-15896 affects WordPress LifterLMS plugin up to version 3.34.5. The vulnerability resides in the upload_import function of class.llms.admin.import.php, allowing unauthenticated imports that can lead to privilege escalation (administrator account creation), website redirection, and stored ...