Lucene search
+L

6 matches found

Nuclei
Nuclei
added 9 hours ago51 views

LearnPress < 4.2.6.8.1 - Information Disclosure

LearnPress – WordPress LMS Plugin contains a sensitive information exposure caused by incorrect implementation of getitemspermissionscheck function in all versions up to 4.2.6.8, letting unauthenticated attackers extract user emails and basic information. id: CVE-2024-5483 info: name: LearnPress...

5.3CVSS5.2AI score0.01008EPSS
Exploits0References1
OSV
OSV
added 2024/06/05 3:15 a.m.8 views

CVE-2024-5483

The LearnPress – WordPress LMS Plugin plugin for WordPress is vulnerable to Sensitive Information Exposure in all versions up to, and including, 4.2.6.8 due to incorrect implementation of getitemspermissionscheck function. This makes it possible for unauthenticated attackers to extract basic...

5.3CVSS5.8AI score0.01008EPSS
Exploits0References2
CVE
CVE
added 2024/06/05 2:34 a.m.91 views

CVE-2024-5483

LearnPress – WordPress LMS Plugin (LearnPress) CVE-2024-5483: Sensitive Information Exposure in all versions up to 4.2.6.8 due to an incorrect implementation of get_items_permissions_check, allowing unauthenticated attackers to retrieve basic user data, including emails. Remediation provided by c...

5.3CVSS5.5AI score0.01008EPSS
Exploits0References2Affected Software1
Vulnrichment
Vulnrichment
added 2024/06/05 2:34 a.m.22 views

CVE-2024-5483 LearnPress – WordPress LMS Plugin <= 4.2.6.8 - Basic Information Disclosure via JSON API

The LearnPress – WordPress LMS Plugin plugin for WordPress is vulnerable to Sensitive Information Exposure in all versions up to, and including, 4.2.6.8 due to incorrect implementation of getitemspermissionscheck function. This makes it possible for unauthenticated attackers to extract basic...

5.3CVSS6.6AI score0.01008EPSS
Exploits0References2
Cvelist
Cvelist
added 2024/06/05 2:34 a.m.33 views

CVE-2024-5483 LearnPress – WordPress LMS Plugin <= 4.2.6.8 - Basic Information Disclosure via JSON API

The LearnPress – WordPress LMS Plugin plugin for WordPress is vulnerable to Sensitive Information Exposure in all versions up to, and including, 4.2.6.8 due to incorrect implementation of getitemspermissionscheck function. This makes it possible for unauthenticated attackers to extract basic...

5.3CVSS5AI score0.01008EPSS
Exploits0References2
Patchstack
Patchstack
added 2024/06/05 12:0 a.m.14 views

WordPress LearnPress Plugin <= 4.2.6.8 is vulnerable to Sensitive Data Exposure

Software LearnPress Type Plugin Vulnerable versions = 4.2.6.8 Fixed in 4.2.6.8.1 OWASP Top 10 A3: Sensitive Data Exposure Classification Sensitive Data Exposure CVE CVE-2024-5483 Patch priority Low CVSS severity Low 5.3 Developer Claim ownership PSID bf1f79c488bb Credits Khayal Farzaliyev...

5.3CVSS6.5AI score0.01008EPSS
Exploits0References3Affected Software1
Rows per page
Query Builder