4 matches found
CVE-2024-6589
The CVE-2024-6589 entry concerns LearnPress – WordPress LMS Plugin (versions
CVE-2024-6589 LearnPress <= 4.2.6.8.2 - Authenticated (Contributor+) Local File Inclusion
The LearnPress – WordPress LMS Plugin plugin for WordPress is vulnerable to Local File Inclusion in all versions up to, and including, 4.2.6.8.2 via the 'rendercontentblocktemplate' function. This makes it possible for authenticated attackers, with Contributor-level access and above, to include a...
CVE-2024-6589 LearnPress <= 4.2.6.8.2 - Authenticated (Contributor+) Local File Inclusion
The LearnPress – WordPress LMS Plugin plugin for WordPress is vulnerable to Local File Inclusion in all versions up to, and including, 4.2.6.8.2 via the 'rendercontentblocktemplate' function. This makes it possible for authenticated attackers, with Contributor-level access and above, to include a...
WordPress LearnPress Plugin <= 4.2.6.8.2 is vulnerable to Local File Inclusion
Software LearnPress Type Plugin Vulnerable versions = 4.2.6.8.2 Fixed in 4.2.6.9 OWASP Top 10 A1: Injection Classification Local File Inclusion CVE CVE-2024-6589 Patch priority Low CVSS severity Low 7.5 Developer Claim ownership PSID a0500492bf33 Credits stealthcopter Required privilege Contribut...