Lucene search
+L

51 matches found

CNNVD
CNNVD
added 2024/12/31 12:0 a.m.6 views

WordPress plugin WPLMS 安全漏洞

WordPress and WordPress plugin are both products of the WordPress Foundation.WordPress is a set of blogging platforms developed using the PHP language. The platform supports setting up personal blog sites on servers with PHP and MySQL.WordPress plugin is an application plugin. A security...

9.8CVSS8.7AI score0.00614EPSS
Exploits0References1
CNNVD
CNNVD
added 2024/12/31 12:0 a.m.6 views

WordPress plugin WPLMS 安全漏洞

WordPress and WordPress plugin are both products of the WordPress Foundation.WordPress is a set of blogging platforms developed using the PHP language. The platform supports setting up personal blog sites on servers with PHP and MySQL.WordPress plugin is an application plugin. A security...

9.3CVSS8.7AI score0.00663EPSS
Exploits0References1
CNNVD
CNNVD
added 2024/12/31 12:0 a.m.6 views

WordPress plugin WPLMS 代码问题漏洞

WordPress and WordPress plugin are both products of the WordPress Foundation.WordPress is a set of blogging platforms developed using the PHP language. The platform supports setting up personal blog sites on servers with PHP and MySQL.WordPress plugin is an application plugin. A code issue...

10CVSS9AI score0.00743EPSS
Exploits0References1
Positive Technologies
Positive Technologies
added 2024/12/23 12:0 a.m.7 views

PT-2024-36678 · Vibethemes · Wplms

Name of the Vulnerable Software and Affected Versions: WPLMS versions 1.9.9 and earlier Description: The issue is related to an Incorrect Privilege Assignment vulnerability, which allows Privilege Escalation. This vulnerability affects the VibeThemes WPLMS plugin. Recommendations: For versions...

9.8CVSS9.4AI score0.00614EPSS
Exploits0References7
OSV
OSV
added 2024/12/18 7:15 p.m.2 views

CVE-2024-56047

Improper Neutralization of Special Elements used in an SQL Command 'SQL Injection' vulnerability in VibeThemes WPLMS allows SQL Injection.This issue affects WPLMS: from n/a before 1.9.9.5.3...

8.8CVSS7.3AI score
Exploits0References1
Vulnrichment
Vulnrichment
added 2024/12/18 6:58 p.m.12 views

CVE-2024-56047 WordPress WPLMS plugin < 1.9.9.5.3 - Subscriber+ SQL Injection vulnerability

Improper Neutralization of Special Elements used in an SQL Command 'SQL Injection' vulnerability in VibeThemes WPLMS allows SQL Injection.This issue affects WPLMS: from n/a before 1.9.9.5.3...

8.5CVSS7.9AI score0.00602EPSS
Exploits0References1
Cvelist
Cvelist
added 2024/12/18 6:58 p.m.22 views

CVE-2024-56053 WordPress WPLMS plugin < 1.9.9.5.3 - Instructor+ SQL Injection vulnerability

Improper Neutralization of Special Elements used in an SQL Command 'SQL Injection' vulnerability in VibeThemes WPLMS wplmsplugin allows SQL Injection.This issue affects WPLMS: from n/a through 1.9.9.5.3...

7.6CVSS0.00425EPSS
Exploits0References1
CVE
CVE
added 2024/12/18 6:57 p.m.58 views

CVE-2024-56048

CVE-2024-56048 affects WPLMS (WordPress LMS) up to version 1.9.9. The vulnerability is a Missing Authorization/Unauthenticated Privilege Escalation that allows updating privileged options and accessing restricted functionality, with reported exploitation in multiple disclosures. Several connected...

8.8CVSS7.2AI score0.00606EPSS
Exploits0References1Affected Software1
Vulnrichment
Vulnrichment
added 2024/12/18 6:57 p.m.12 views

CVE-2024-56048 WordPress WPLMS plugin <= 1.9.9 - Arbitrary Option Update to Privilege Escalation vulnerability

Missing Authorization vulnerability in VibeThemes WPLMS allows Accessing Functionality Not Properly Constrained by ACLs.This issue affects WPLMS: from n/a through 1.9.9...

8.8CVSS7.2AI score0.00606EPSS
Exploits0References1
CVE
CVE
added 2024/12/18 6:55 p.m.70 views

CVE-2024-56052

CVE-2024-56052 : Unrestricted Upload of File with Dangerous Type in the WordPress LMS plugin WPLMS allows uploading a web shell to the web server. Affected: WPLMS versions prior to 1.9.9.5.2. Impact is described as severe, with CVSS ratings in sources indicating HIGH/CRITICAL levels (e.g., base s...

9.9CVSS7.4AI score0.00696EPSS
Exploits0References1Affected Software1
Vulnrichment
Vulnrichment
added 2024/12/18 6:55 p.m.12 views

CVE-2024-56052 WordPress WPLMS plugin < 1.9.9.5.2 - Student+ Arbitrary File Upload vulnerability

Unrestricted Upload of File with Dangerous Type vulnerability in VibeThemes WPLMS wplmsplugin allows Upload a Web Shell to a Web Server.This issue affects WPLMS: from n/a through 1.9.9.5.2...

9.9CVSS8.8AI score0.00696EPSS
Exploits0References1
CVE
CVE
added 2024/12/18 6:53 p.m.51 views

CVE-2024-56054

CVE-2024-56054 affects the WordPress plugin WPLMS by VibeThemes. The connected Red Hat/Wordfence entries confirm an Unrestricted Upload of File with Dangerous Type vulnerability that enables uploading a web shell to the web server in WPLMS versions prior to 1.9.9.5.2. According to NVD, the CVSSv3...

9.1CVSS7.4AI score0.00568EPSS
Exploits0References1Affected Software1
Vulnrichment
Vulnrichment
added 2024/12/18 6:53 p.m.8 views

CVE-2024-56054 WordPress WPLMS plugin < 1.9.9.5.2 - Instructor+ Arbitrary File Upload vulnerability

Unrestricted Upload of File with Dangerous Type vulnerability in VibeThemes WPLMS wplmsplugin allows Upload a Web Shell to a Web Server.This issue affects WPLMS: from n/a through 1.9.9.5.2...

9.1CVSS7.4AI score0.00568EPSS
Exploits0References1
Cvelist
Cvelist
added 2024/12/18 6:52 p.m.23 views

CVE-2024-56057 WordPress WPLMS plugin < 1.9.9.5.2 - Arbitrary File Upload vulnerability

Unrestricted Upload of File with Dangerous Type vulnerability in VibeThemes WPLMS wplmsplugin allows Upload a Web Shell to a Web Server.This issue affects WPLMS: from n/a through 1.9.9.5.2...

9.9CVSS0.00542EPSS
Exploits0References1
Vulnrichment
Vulnrichment
added 2024/12/18 6:52 p.m.13 views

CVE-2024-56057 WordPress WPLMS plugin < 1.9.9.5.2 - Arbitrary File Upload vulnerability

Unrestricted Upload of File with Dangerous Type vulnerability in VibeThemes WPLMS wplmsplugin allows Upload a Web Shell to a Web Server.This issue affects WPLMS: from n/a through 1.9.9.5.2...

9.9CVSS7.4AI score0.00542EPSS
Exploits0References1
Vulnrichment
Vulnrichment
added 2024/12/18 6:42 p.m.7 views

CVE-2024-56055 WordPress WPLMS plugin < 1.9.9.5.2 - Arbitrary Directory Deletion vulnerability

Path Traversal: '.../...//' vulnerability in VibeThemes WPLMS allows Path Traversal.This issue affects WPLMS: from n/a before 1.9.9.5.2...

8.5CVSS6.9AI score0.00468EPSS
Exploits0References1
CVE
CVE
added 2024/12/18 6:42 p.m.42 views

CVE-2024-56055

CVE-2024-56055 describes a path traversal vulnerability in the WPLMS WordPress plugin. The issue allows arbitrary directory deletion through path traversal in WPLMS versions up to 1.9.9.5.2 (authenticated as Contributor+). Public records indicate the root cause is a path traversal misconfiguratio...

8.8CVSS7.2AI score0.00468EPSS
Exploits0References1Affected Software1
CNNVD
CNNVD
added 2024/12/18 12:0 a.m.7 views

WordPress plugin WPLMS SQL注入漏洞

WordPress and WordPress plugin are both products of the WordPress Foundation.WordPress is a set of blogging platform developed using the PHP language. The platform supports setting up personal blog sites on servers with PHP and MySQL.WordPress plugin is an application plugin. A SQL injection...

8.8CVSS8.9AI score0.00602EPSS
Exploits0References1
CNNVD
CNNVD
added 2024/12/18 12:0 a.m.8 views

WordPress plugin WPLMS 代码问题漏洞

WordPress and WordPress plugin are both products of the WordPress Foundation.WordPress is a set of blogging platforms developed using the PHP language. The platform supports setting up personal blog sites on servers with PHP and MySQL.WordPress plugin is an application plug-in. A code issue...

9.9CVSS8.8AI score0.00542EPSS
Exploits0References1
CNNVD
CNNVD
added 2024/12/18 12:0 a.m.4 views

WordPress plugin WPLMS 安全漏洞

WordPress and WordPress plugin are both products of the WordPress Foundation.WordPress is a set of blogging platforms developed using the PHP language. The platform supports setting up personal blog sites on servers with PHP and MySQL.WordPress plugin is an application plugin. A security...

8.8CVSS8.4AI score0.00606EPSS
Exploits0References1
Rows per page
Query Builder