Learnpress Security Vulnerabilities and Issues — Learnpress CVE List

Lucene search

ThimpressLearnpress

3 matches found

CVE•added 2024/07/02 11:15 a.m.•84 views

CVE-2024-6088

The LearnPress – WordPress LMS Plugin plugin for WordPress is vulnerable to unauthorized user registration due to a missing capability check on the 'register' function in all versions up to, and including, 4.2.6.8.1. This makes it possible for unauthenticated attackers to bypass disabled user regis...

5.3CVSS5.5AI score0.00835EPSS

CVE•added 2024/07/25 11:15 a.m.•41 views

CVE-2024-6589

The LearnPress – WordPress LMS Plugin plugin for WordPress is vulnerable to Local File Inclusion in all versions up to, and including, 4.2.6.8.2 via the 'render_content_block_template' function. This makes it possible for authenticated attackers, with Contributor-level access and above, to include ...

8.8CVSS8.9AI score0.02555EPSS

CVE•added 2024/07/02 11:15 a.m.•39 views

CVE-2024-6099

The LearnPress – WordPress LMS Plugin plugin for WordPress is vulnerable to unauthenticated bypass to user registration in versions up to, and including, 4.2.6.8.1. This is due to missing checks in the 'check_validate_fields' function in the checkout. This makes it possible for unauthenticated atta...

5.3CVSS5.6AI score0.00112EPSS