cve,link,title,description,vendor,products,score,severity,epss,cisa,cisa_published,article,ransomware,exploited,poc,trended,trended_no_1,published,trended_score
CVE-2024-10010,https://securityvulnerability.io/vulnerability/CVE-2024-10010,Stored Cross-Site Scripting Vulnerability in LearnPress Plugin for WordPress,"CVE-2024-10010 refers to a high-severity Stored Cross-Site Scripting vulnerability found in the LearnPress WordPress plugin before version 4.2.7.2. This security flaw arises from improper sanitization and escaping of certain settings, which allows high privilege users, such as administrators, to execute malicious scripts. Even in environments where the unfiltered_html capability has been disabled, such as in multisite configurations, the vulnerability can be exploited, increasing the risk of unauthorized code execution and compromising the overall security of the WordPress site.",Wordpress,Learnpress,,,0.0004299999854993075,false,,false,false,true,true,false,false,2024-12-12T06:00:09.430Z,0
CVE-2024-11868,https://securityvulnerability.io/vulnerability/CVE-2024-11868,Sensitive Information Exposure Vulnerability in LearnPress,"The LearnPress – WordPress LMS Plugin plugin for WordPress is vulnerable to Sensitive Information Exposure in all versions up to, and including, 4.2.7.3 via class-lp-rest-material-controller.php. This makes it possible for unauthenticated attackers to extract potentially sensitive paid course material.",Wordpress,Learnpress – WordPress Lms Plugin,5.3,MEDIUM,0.0004299999854993075,false,,false,false,false,,false,false,2024-12-10T12:24:59.516Z,0
CVE-2024-9609,https://securityvulnerability.io/vulnerability/CVE-2024-9609,Unauthenticated Reflected Cross-Site Scripting Vulnerability in LearnPress Export Import,"The LearnPress Export Import extension for the LearnPress plugin in WordPress is susceptible to Reflected Cross-Site Scripting due to lacking proper input sanitization and output escaping on the 'learnpress_import_form_server' parameter. This flaw affects all versions up to and including 4.0.4, allowing unauthenticated attackers to execute arbitrary web scripts within user sessions. Successful exploitation occurs when an attacker convinces a user to click on a malicious link, leading to unauthorized actions and potential data compromise within the affected web applications.",Wordpress,Learnpress Export Import – WordPress Extension For Learnpress,6.1,MEDIUM,0.0005200000014156103,false,,false,false,false,,false,false,2024-11-15T04:29:05.635Z,0
CVE-2024-8522,https://securityvulnerability.io/vulnerability/CVE-2024-8522,Unauthenticated SQL Injection Vulnerability in LearnPress LMS Plugin,"The LearnPress plugin for WordPress, designed for Learning Management Systems (LMS), is susceptible to SQL injection attacks through the 'c_only_fields' parameter in the /wp-json/learnpress/v1/courses REST API endpoint. This vulnerability arises from inadequate escaping of user-supplied parameters, combined with insufficient preparation in the SQL query. As a result, unauthenticated attackers can append malicious SQL queries to existing ones, potentially compromising database security and allowing unauthorized access to sensitive information.",Wordpress,Learnpress – WordPress Lms Plugin,7.5,HIGH,0.025830000638961792,false,,false,false,true,true,false,false,2024-09-12T08:30:46.615Z,0
CVE-2024-8529,https://securityvulnerability.io/vulnerability/CVE-2024-8529,LearnPress Vulnerable to SQL Injection in REST API Endpoint,"The LearnPress – WordPress LMS Plugin is susceptible to SQL Injection due to insufficient input escaping of the 'c_fields' parameter within the /wp-json/lp/v1/courses/archive-course REST API endpoint. This vulnerability affects all versions up to and including 4.2.7. As a result, unauthenticated attackers may exploit this weakness to insert arbitrary SQL queries into existing database queries, potentially leading to unauthorized access and exposure of sensitive information stored in the database.",Wordpress,Learnpress – WordPress Lms Plugin,7.5,HIGH,0.0008699999889358878,false,,false,false,true,true,false,false,2024-09-12T08:30:46.090Z,0
CVE-2024-7548,https://securityvulnerability.io/vulnerability/CVE-2024-7548,Vulnerability in LearnPress Allows Attackers to Extract Sensitive Information from Database,"The LearnPress LMS Plugin for WordPress is affected by a time-based SQL Injection vulnerability due to insufficient escaping of user-supplied parameters, specifically the 'order' parameter. This vulnerability permits authenticated attackers with Contributor-level access and above to inject additional SQL queries into existing queries. Consequently, this exploitation can lead to the unauthorized extraction of sensitive information from the database, posing a significant risk to the integrity and confidentiality of user data.",Wordpress,Learnpress – WordPress Lms Plugin,6.5,MEDIUM,0.0006600000197067857,false,,false,false,false,,false,false,2024-08-08T05:31:45.510Z,0
CVE-2024-6589,https://securityvulnerability.io/vulnerability/CVE-2024-6589,Arbitrary File Inclusion Vulnerability in LearnPress,"This vulnerability in the LearnPress plugin for WordPress permits authenticated users with Contributor-level access and above to exploit the 'render_content_block_template' function, resulting in Local File Inclusion. Attackers can include and execute arbitrary files on the server, thus executing unauthorized PHP code. This may lead to bypassing access controls, unauthorized access to sensitive data, and potential system compromise. Users of affected LearnPress versions should take immediate action to secure their installations against potential exploitation.",Wordpress,Learnpress,8.8,HIGH,0.00044999999227002263,false,,false,false,false,,false,false,2024-07-25T11:15:00.000Z,0
CVE-2024-6099,https://securityvulnerability.io/vulnerability/CVE-2024-6099,Unauthenticated Bypass of User Registration Vulnerability in LearnPress,"The LearnPress – WordPress LMS Plugin plugin for WordPress is vulnerable to unauthenticated bypass to user registration in versions up to, and including, 4.2.6.8.1. This is due to missing checks in the 'check_validate_fields' function in the checkout. This makes it possible for unauthenticated attackers to register as the default role on the site, even if registration is disabled.",Wordpress,Learnpress,5.3,MEDIUM,0.0005200000014156103,false,,false,false,false,,false,false,2024-07-02T11:15:00.000Z,0
CVE-2024-6088,https://securityvulnerability.io/vulnerability/CVE-2024-6088,Unauthorized User Registration Vulnerability in LearnPress WordPress LMS Plugin,"The LearnPress – WordPress LMS Plugin plugin for WordPress is vulnerable to unauthorized user registration due to a missing capability check on the 'register' function in all versions up to, and including, 4.2.6.8.1. This makes it possible for unauthenticated attackers to bypass disabled user registration to create a new account with the default role.",Wordpress,Learnpress,5.3,MEDIUM,0.0005200000014156103,false,,false,false,false,,false,false,2024-07-02T11:15:00.000Z,0
CVE-2024-5483,https://securityvulnerability.io/vulnerability/CVE-2024-5483,Unauthenticated Attackers Can Extract Basic User Information,"The LearnPress – WordPress LMS Plugin plugin for WordPress is vulnerable to Sensitive Information Exposure in all versions up to, and including, 4.2.6.8 due to incorrect implementation of get_items_permissions_check function. This makes it possible for unauthenticated attackers to extract basic information about website users, including their emails",Wordpress,Learnpress – WordPress Lms Plugin,5.3,MEDIUM,0.0004299999854993075,false,,false,false,false,,false,false,2024-06-05T02:34:31.183Z,0
CVE-2024-4971,https://securityvulnerability.io/vulnerability/CVE-2024-4971,LearnPress Vulnerable to Reflected Cross-Site Scripting,"The LearnPress – WordPress LMS Plugin plugin for WordPress is vulnerable to Reflected Cross-Site Scripting via the ‘id’ parameter in all versions up to, and including, 4.2.6.6 due to insufficient input sanitization and output escaping. This makes it possible for unauthenticated attackers to inject arbitrary web scripts in pages that execute if they can successfully trick a user into performing an action such as clicking on a link.",Wordpress,Learnpress – WordPress Lms Plugin,5.4,MEDIUM,0.00044999999227002263,false,,false,false,false,,false,false,2024-05-22T05:32:46.886Z,0
CVE-2024-4444,https://securityvulnerability.io/vulnerability/CVE-2024-4444,Unauthenticated Attackers Can Bypass User Registration in LearnPress,"The LearnPress – WordPress LMS Plugin plugin for WordPress is vulnerable to bypass to user registration in versions up to, and including, 4.2.6.5. This is due to missing checks in the 'create_account' function in the checkout. This makes it possible for unauthenticated attackers to register as the default role on the site, even if registration is disabled.",Wordpress,Learnpress – WordPress Lms Plugin,6.5,MEDIUM,0.0005200000014156103,false,,false,false,false,,false,false,2024-05-14T15:43:00.000Z,0
CVE-2024-4434,https://securityvulnerability.io/vulnerability/CVE-2024-4434,Unauthenticated SQL Injection Vulnerability in LearnPress WordPress LMS Plugin,"The LearnPress – WordPress LMS Plugin is affected by a time-based SQL Injection vulnerability that exploits the ‘term_id’ parameter present in versions up to 4.2.6.5. Insufficient escaping of user-supplied data and inadequate preparation of the existing SQL query allow unauthenticated attackers to inject additional SQL commands. This vulnerability can be leveraged to manipulate database queries, enabling attackers to extract sensitive information from the database, compromising the security of WordPress installations utilizing this plugin.",Wordpress,Learnpress – WordPress Lms Plugin,9.8,CRITICAL,0.0008200000156648457,false,,false,false,false,,false,false,2024-05-14T15:43:00.000Z,0
CVE-2024-4397,https://securityvulnerability.io/vulnerability/CVE-2024-4397,Arbitrary File Upload Vulnerability in LearnPress WordPress LMS Plugin,"The LearnPress plugin for WordPress is exposed to vulnerabilities related to arbitrary file uploads due to insufficient file type validation in the 'save_post_materials' function. This flaw affects all versions up to and including 4.2.6.5, allowing authenticated users with Instructor-level privileges to upload any type of file. If exploited, this vulnerability could lead to remote code execution on the server where the affected plugin is installed, posing a significant risk to sensitive data and overall system integrity.",Wordpress,Learnpress – WordPress Lms Plugin,8.8,HIGH,0.00044999999227002263,false,,false,false,false,,false,false,2024-05-14T15:43:00.000Z,0
CVE-2024-4277,https://securityvulnerability.io/vulnerability/CVE-2024-4277,Stored Cross-Site Scripting Vulnerability in LearnPress,"The LearnPress – WordPress LMS Plugin plugin for WordPress is vulnerable to Stored Cross-Site Scripting via the ‘layout_html’ parameter in all versions up to, and including, 4.2.6.5 due to insufficient input sanitization and output escaping. This makes it possible for authenticated attackers, with contributor-level access and above, to inject arbitrary web scripts in pages that will execute whenever a user accesses an injected page.",Wordpress,Learnpress – WordPress Lms Plugin,5.4,MEDIUM,0.00044999999227002263,false,,false,false,false,,false,false,2024-05-14T15:43:00.000Z,0
CVE-2024-3560,https://securityvulnerability.io/vulnerability/CVE-2024-3560,Stored Cross-Site Scripting Vulnerability in LearnPress,"The LearnPress – WordPress LMS Plugin plugin for WordPress is vulnerable to Stored Cross-Site Scripting via the _id value in all versions up to, and including, 4.2.6.4 due to insufficient input sanitization and output escaping on user supplied attributes. This makes it possible for authenticated attackers, with contributor-level access and above, to inject arbitrary web scripts in pages that will execute whenever a user accesses an injected page.",Wordpress,Learnpress – WordPress Lms Plugin,5.4,MEDIUM,0.00044999999227002263,false,,false,false,false,,false,false,2024-04-19T01:57:09.385Z,0
CVE-2024-1463,https://securityvulnerability.io/vulnerability/CVE-2024-1463,Stored Cross-Site Scripting in LearnPress LMS Plugin for WordPress,"The LearnPress LMS Plugin for WordPress is susceptible to stored cross-site scripting, allowing attackers with LP Instructor-level access to inject malicious web scripts through the Course, Lesson, and Quiz titles and content. This vulnerability stems from inadequate input sanitization and output escaping, potentially leading to the execution of arbitrary scripts when a user accesses affected pages. Users are encouraged to upgrade to the latest version to mitigate this risk.",Wordpress,Learnpress – WordPress Lms Plugin,4.8,MEDIUM,0.00044999999227002263,false,,false,false,false,,false,false,2024-04-09T18:59:12.301Z,0
CVE-2024-1289,https://securityvulnerability.io/vulnerability/CVE-2024-1289,LearnPress Vulnerable to Insecure Direct Object Reference,"The LearnPress – WordPress LMS Plugin plugin for WordPress is vulnerable to Insecure Direct Object Reference in all versions up to, and including, 4.2.6.3 due to missing validation on a user controlled key when looking up order information. This makes it possible for authenticated attackers to obtain information on orders placed by other users and guests, which can be leveraged to sign up for paid courses that were purchased by guests. Emails of other users are also exposed.",Wordpress,Learnpress – WordPress Lms Plugin,5.4,MEDIUM,0.00044999999227002263,false,,false,false,false,,false,false,2024-04-09T18:58:31.705Z,0
CVE-2024-2115,https://securityvulnerability.io/vulnerability/CVE-2024-2115,Cross-Site Request Forgery Vulnerability in LearnPress WordPress LMS Plugin,"The LearnPress – WordPress LMS Plugin plugin for WordPress is vulnerable to Cross-Site Request Forgery in all versions up to, and including, 4.0.0. This is due to missing or incorrect nonce validation on the filter_users functions. This makes it possible for unauthenticated attackers to elevate their privileges to that of a teacher via a forged request granted they can trick a site administrator into performing an action such as clicking on a link.",Wordpress,Learnpress,,,0.0004299999854993075,false,,false,false,false,,false,false,2024-04-05T08:15:00.000Z,0
CVE-2023-5558,https://securityvulnerability.io/vulnerability/CVE-2023-5558,LearnPress < 4.2.5.5 - Reflected Cross-Site Scripting,"The LearnPress WordPress plugin before 4.2.5.5 does not sanitise and escape user input before outputting it back in the page, leading to a Reflected Cross-Site Scripting which could be used against high privilege users such as admin.",Wordpress,Learnpress,6.1,MEDIUM,0.0008299999753944576,false,,false,false,true,true,false,false,2024-01-16T15:54:33.473Z,0
CVE-2023-6567,https://securityvulnerability.io/vulnerability/CVE-2023-6567,SQL Injection Vulnerability in LearnPress Plugin for WordPress,"The LearnPress plugin for WordPress has a vulnerability that allows unauthenticated attackers to exploit time-based SQL Injection through the 'order_by' parameter. This vulnerability persists in all versions up to and including 4.2.5.7, resulting from inadequate escaping of user-supplied input and poor preparation of existing SQL queries. Attackers can inject additional SQL queries into the system, which could lead to unauthorized access and extraction of sensitive information from the database.",Wordpress,LearnPress – WordPress LMS Plugin,7.5,HIGH,0.13655999302864075,false,,false,false,true,true,false,false,2024-01-11T08:32:37.107Z,0
CVE-2023-6634,https://securityvulnerability.io/vulnerability/CVE-2023-6634,LearnPress Plugin Vulnerable to Command Injection,"The LearnPress plugin for WordPress is impacted by a Command Injection vulnerability across all versions up to and including 4.2.5.7. The vulnerability arises from the plugin's use of the call_user_func function, which processes user input inappropriately. This vulnerability enables unauthenticated attackers to execute any public function that accepts a single parameter, leading to potential remote code execution. Administrators are advised to update the LearnPress plugin to a patched version to mitigate this security risk.",Wordpress,LearnPress – WordPress LMS Plugin,9.8,CRITICAL,0.09973999857902527,false,,false,false,true,true,false,false,2024-01-11T08:32:28.636Z,0
CVE-2023-6223,https://securityvulnerability.io/vulnerability/CVE-2023-6223,Insecure Direct Object Reference in LearnPress Plugin for WordPress,"The LearnPress plugin for WordPress suffers from an Insecure Direct Object Reference vulnerability that impacts all versions up to and including 4.2.5.7. This issue is found in the /wp-json/lp/v1/profile/course-tab REST API, where the absence of proper validation on the 'userID' parameter allows authenticated users with subscriber-level access and above to exploit the vulnerability. Attackers can potentially gain unauthorized access to sensitive information such as another user's course progress, posing a significant risk to user privacy and data integrity.",Wordpress,LearnPress – WordPress LMS Plugin,4.3,MEDIUM,0.0004799999878741801,false,,false,false,false,,false,false,2024-01-11T06:49:32.006Z,0
CVE-2022-47615,https://securityvulnerability.io/vulnerability/CVE-2022-47615,WordPress LearnPress Plugin <= 4.1.7.3.2 is vulnerable to Local File Inclusion,"A Local File Inclusion vulnerability has been identified in the LearnPress WordPress LMS Plugin, affecting versions up to 4.1.7.3.2. This flaw allows an attacker to include files from the server's local file system, potentially leading to the exposure of sensitive information or the execution of malicious code, thereby compromising the security of the application. Users are advised to update to the latest version to mitigate risks associated with this vulnerability.",Wordpress,LearnPress – WordPress LMS Plugin,9.8,CRITICAL,0.16218000650405884,false,,false,false,true,true,false,false,2023-01-26T21:18:00.000Z,0
CVE-2022-45808,https://securityvulnerability.io/vulnerability/CVE-2022-45808,WordPress LearnPress Plugin <= 4.1.7.3.2 is vulnerable to SQL Injection,"An SQL Injection vulnerability exists in the LearnPress plugin for WordPress, affecting versions up to 4.1.7.3.2. This flaw allows attackers to manipulate SQL queries by injecting malicious code into input fields, potentially exposing sensitive data or altering the database's content. As a result, it poses significant risks to websites using this plugin. Administrators are advised to update to the latest version promptly to mitigate security risks.",Wordpress,LearnPress – WordPress LMS Plugin,9.8,CRITICAL,0.0026499999221414328,false,,false,false,true,true,false,false,2023-01-26T21:17:00.000Z,0