Lucene search
K
Catalog
Vendors
Products
Timeline
Vulnerabilities
Sources
Documentation
Blog
Glossary
FAQ
Brand assets
Assessment
Agents dashboard
Agent Scanning
API Scanning
Assessment API
Alerts
Email notifications
Webhook notifications
Alerts API
SBOM package analysis
API Reference
Support
Settings
Sign in
🔥 Daily Hot!
💪🏽 CPE Enhanced Advisories
🕶 Shadow Exploits
🕵🏼 Vulners CPE
🔐 Security news
💻 Exploit updates
📑 Blogs review
🐧 Linux vulnerabilities
🐞 Bugbounty
🤖 AI High Score
📰 CVE Feed
show all

7 matches found

Patchstack
Patchstackadded 2025/07/01 9:53 p.m.5 views

WordPress LifterLMS plugin <= 8.0.6 - SQL Injection Vulnerability

SQL Injection Vulnerability discovered by ChuongVN in WordPress Plugin LifterLMS versions = 8.0.6...

9.8CVSS7.7AI score0.00241EPSS
Exploits0Affected Software1
Cvelist
Cvelistadded 2025/06/27 11:52 a.m.8 views

CVE-2025-52717 WordPress LifterLMS plugin <= 8.0.6 - SQL Injection Vulnerability

Improper Neutralization of Special Elements used in an SQL Command 'SQL Injection' vulnerability in chrisbadgett LifterLMS lifterlms allows SQL Injection.This issue affects LifterLMS: from n/a through = 8.0.6...

9.3CVSS0.00241EPSS
Exploits0References1
Patchstack
Patchstackadded 2024/06/05 12:0 a.m.6 views

WordPress LifterLMS Plugin <= 7.6.2 is vulnerable to SQL Injection

Software LifterLMS Type Plugin Vulnerable versions = 7.6.2 Fixed in 7.6.3 OWASP Top 10 A1: Injection Classification SQL Injection CVE CVE-2024-4743 Patch priority Low CVSS severity Low 8.5 Developer Claim ownership PSID 246f92b12453 Credits Peter Thaleikis Required privilege Contributor Published...

9.8CVSS6.8AI score0.00372EPSS
Exploits0References3Affected Software1
Patchstack
Patchstackadded 2024/02/28 12:0 a.m.9 views

WordPress LifterLMS Plugin <= 7.5.1 is vulnerable to Broken Access Control

Software LifterLMS Type Plugin Vulnerable versions = 7.5.1 Fixed in 7.5.2 OWASP Top 10 A5: Broken Access Control Classification Broken Access Control CVE CVE-2024-0377 Patch priority Low CVSS severity Low 5.3 Developer Claim ownership PSID 017a17d1f987 Credits Francesco Carlucci Required privileg...

5.3CVSS6.5AI score0.04162EPSS
Exploits0References3Affected Software1
Packet Storm
Packet Stormadded 2021/08/10 12:0 a.m.213 views

WordPress LifterLMS 4.21.1 Insecure Direct Object Reference

Exploit Title: WordPress Plugin LifterLMS 4.21.1 - Access Other Student Grades/Answers via IDOR Date: 2021-05-17 Exploit Author: captainhook Vendor Homepage: https://lifterlms.com Software Link: https://lifterlms.com Version: 4.21.1 Tested on: any Description The plugin was affected by an IDOR...

7.4AI score
Exploits0
0day.today
0day.todayadded 2021/05/28 12:0 a.m.46 views

WordPress LifterLMS 4.21.0 Plugin - Stored Cross-Site Scripting Vulnerability

Exploit Title: WordPress Plugin LifterLMS 4.21.0 - Stored Cross-Site Scripting XSS Exploit Author: Captainhook Vendor Homepage: https://lifterlms.com/ Software Link: https://github.com/gocodebox/lifterlms/releases/tag/4.21.0 Version: LifterLMS alert/XSS/ 3- The XSS will be stored and triggered in...

5.4CVSS5.5AI score0.0027EPSS
Exploits5
Patchstack
Patchstackadded 2021/05/10 12:0 a.m.9 views

WordPress LifterLMS plugin <= 4.21.0 - Reflected Cross-Site Scripting (XSS) vulnerability

Reflected Cross-Site Scripting XSS vulnerability discovered by Ashish Jha Bluefire Redteam in WordPress LifterLMS plugin versions = 4.21.0. Solution Update the WordPress LifterLMS plugin to the latest available version at least 4.21.1...

2.1AI score
Exploits0References2Affected Software1
Rows per page
Query Builder