Lucene search

Kodezen Security Vulnerabilities

cve

CVE-2024-1505

The Academy LMS – eLearning and online course solution for WordPress plugin for WordPress is vulnerable to privilege escalation in all versions up to, and including, 1.9.19. This is due to plugin allowing arbitrary user meta updates through the saved_user_info() function. This makes it possible for...

8.8CVSS

8.6AI Score

0.0004EPSS

2024-03-13 04:15 PM

cve

CVE-2024-33912

Missing Authorization vulnerability in Academy LMS.This issue affects Academy LMS: from n/a through 1.9.16.

7.1CVSS

6.8AI Score

0.0004EPSS

2024-05-06 07:15 PM

cve

CVE-2024-35171

Exposure of Sensitive Information to an Unauthorized Actor vulnerability in Academy LMS academy.This issue affects Academy LMS: from n/a through 1.9.25.

5.3CVSS

6.7AI Score

0.0004EPSS

2024-05-14 03:39 PM

cve

CVE-2024-38701

Authorization Bypass Through User-Controlled Key vulnerability in Academy LMS.This issue affects Academy LMS: from n/a through 2.0.4.

8.8CVSS

4.7AI Score

0.001EPSS

2024-07-22 11:15 AM