cve,link,title,description,vendor,products,score,severity,epss,cisa,cisa_published,article,ransomware,exploited,poc,trended,trended_no_1,published,trended_score
CVE-2024-11868,https://securityvulnerability.io/vulnerability/CVE-2024-11868,Sensitive Information Exposure Vulnerability in LearnPress,"The LearnPress – WordPress LMS Plugin plugin for WordPress is vulnerable to Sensitive Information Exposure in all versions up to, and including, 4.2.7.3 via class-lp-rest-material-controller.php. This makes it possible for unauthenticated attackers to extract potentially sensitive paid course material.",Wordpress,Learnpress – WordPress Lms Plugin,5.3,MEDIUM,0.0004299999854993075,false,,false,false,false,,false,false,2024-12-10T12:24:59.516Z,0
CVE-2024-8522,https://securityvulnerability.io/vulnerability/CVE-2024-8522,Unauthenticated SQL Injection Vulnerability in LearnPress LMS Plugin,"The LearnPress plugin for WordPress, designed for Learning Management Systems (LMS), is susceptible to SQL injection attacks through the 'c_only_fields' parameter in the /wp-json/learnpress/v1/courses REST API endpoint. This vulnerability arises from inadequate escaping of user-supplied parameters, combined with insufficient preparation in the SQL query. As a result, unauthenticated attackers can append malicious SQL queries to existing ones, potentially compromising database security and allowing unauthorized access to sensitive information.",Wordpress,Learnpress – WordPress Lms Plugin,7.5,HIGH,0.025830000638961792,false,,false,false,true,true,false,false,2024-09-12T08:30:46.615Z,0
CVE-2024-8529,https://securityvulnerability.io/vulnerability/CVE-2024-8529,LearnPress Vulnerable to SQL Injection in REST API Endpoint,"The LearnPress – WordPress LMS Plugin is susceptible to SQL Injection due to insufficient input escaping of the 'c_fields' parameter within the /wp-json/lp/v1/courses/archive-course REST API endpoint. This vulnerability affects all versions up to and including 4.2.7. As a result, unauthenticated attackers may exploit this weakness to insert arbitrary SQL queries into existing database queries, potentially leading to unauthorized access and exposure of sensitive information stored in the database.",Wordpress,Learnpress – WordPress Lms Plugin,7.5,HIGH,0.0008699999889358878,false,,false,false,true,true,false,false,2024-09-12T08:30:46.090Z,0
CVE-2024-7548,https://securityvulnerability.io/vulnerability/CVE-2024-7548,Vulnerability in LearnPress Allows Attackers to Extract Sensitive Information from Database,"The LearnPress LMS Plugin for WordPress is affected by a time-based SQL Injection vulnerability due to insufficient escaping of user-supplied parameters, specifically the 'order' parameter. This vulnerability permits authenticated attackers with Contributor-level access and above to inject additional SQL queries into existing queries. Consequently, this exploitation can lead to the unauthorized extraction of sensitive information from the database, posing a significant risk to the integrity and confidentiality of user data.",Wordpress,Learnpress – WordPress Lms Plugin,6.5,MEDIUM,0.0006600000197067857,false,,false,false,false,,false,false,2024-08-08T05:31:45.510Z,0
CVE-2024-5483,https://securityvulnerability.io/vulnerability/CVE-2024-5483,Unauthenticated Attackers Can Extract Basic User Information,"The LearnPress – WordPress LMS Plugin plugin for WordPress is vulnerable to Sensitive Information Exposure in all versions up to, and including, 4.2.6.8 due to incorrect implementation of get_items_permissions_check function. This makes it possible for unauthenticated attackers to extract basic information about website users, including their emails",Wordpress,Learnpress – WordPress Lms Plugin,5.3,MEDIUM,0.0004299999854993075,false,,false,false,false,,false,false,2024-06-05T02:34:31.183Z,0
CVE-2024-4971,https://securityvulnerability.io/vulnerability/CVE-2024-4971,LearnPress Vulnerable to Reflected Cross-Site Scripting,"The LearnPress – WordPress LMS Plugin plugin for WordPress is vulnerable to Reflected Cross-Site Scripting via the ‘id’ parameter in all versions up to, and including, 4.2.6.6 due to insufficient input sanitization and output escaping. This makes it possible for unauthenticated attackers to inject arbitrary web scripts in pages that execute if they can successfully trick a user into performing an action such as clicking on a link.",Wordpress,Learnpress – WordPress Lms Plugin,5.4,MEDIUM,0.00044999999227002263,false,,false,false,false,,false,false,2024-05-22T05:32:46.886Z,0
CVE-2024-4444,https://securityvulnerability.io/vulnerability/CVE-2024-4444,Unauthenticated Attackers Can Bypass User Registration in LearnPress,"The LearnPress – WordPress LMS Plugin plugin for WordPress is vulnerable to bypass to user registration in versions up to, and including, 4.2.6.5. This is due to missing checks in the 'create_account' function in the checkout. This makes it possible for unauthenticated attackers to register as the default role on the site, even if registration is disabled.",Wordpress,Learnpress – WordPress Lms Plugin,6.5,MEDIUM,0.0005200000014156103,false,,false,false,false,,false,false,2024-05-14T15:43:00.000Z,0
CVE-2024-4434,https://securityvulnerability.io/vulnerability/CVE-2024-4434,Unauthenticated SQL Injection Vulnerability in LearnPress WordPress LMS Plugin,"The LearnPress – WordPress LMS Plugin is affected by a time-based SQL Injection vulnerability that exploits the ‘term_id’ parameter present in versions up to 4.2.6.5. Insufficient escaping of user-supplied data and inadequate preparation of the existing SQL query allow unauthenticated attackers to inject additional SQL commands. This vulnerability can be leveraged to manipulate database queries, enabling attackers to extract sensitive information from the database, compromising the security of WordPress installations utilizing this plugin.",Wordpress,Learnpress – WordPress Lms Plugin,9.8,CRITICAL,0.0008200000156648457,false,,false,false,false,,false,false,2024-05-14T15:43:00.000Z,0
CVE-2024-4397,https://securityvulnerability.io/vulnerability/CVE-2024-4397,Arbitrary File Upload Vulnerability in LearnPress WordPress LMS Plugin,"The LearnPress plugin for WordPress is exposed to vulnerabilities related to arbitrary file uploads due to insufficient file type validation in the 'save_post_materials' function. This flaw affects all versions up to and including 4.2.6.5, allowing authenticated users with Instructor-level privileges to upload any type of file. If exploited, this vulnerability could lead to remote code execution on the server where the affected plugin is installed, posing a significant risk to sensitive data and overall system integrity.",Wordpress,Learnpress – WordPress Lms Plugin,8.8,HIGH,0.00044999999227002263,false,,false,false,false,,false,false,2024-05-14T15:43:00.000Z,0
CVE-2024-4277,https://securityvulnerability.io/vulnerability/CVE-2024-4277,Stored Cross-Site Scripting Vulnerability in LearnPress,"The LearnPress – WordPress LMS Plugin plugin for WordPress is vulnerable to Stored Cross-Site Scripting via the ‘layout_html’ parameter in all versions up to, and including, 4.2.6.5 due to insufficient input sanitization and output escaping. This makes it possible for authenticated attackers, with contributor-level access and above, to inject arbitrary web scripts in pages that will execute whenever a user accesses an injected page.",Wordpress,Learnpress – WordPress Lms Plugin,5.4,MEDIUM,0.00044999999227002263,false,,false,false,false,,false,false,2024-05-14T15:43:00.000Z,0
CVE-2024-3560,https://securityvulnerability.io/vulnerability/CVE-2024-3560,Stored Cross-Site Scripting Vulnerability in LearnPress,"The LearnPress – WordPress LMS Plugin plugin for WordPress is vulnerable to Stored Cross-Site Scripting via the _id value in all versions up to, and including, 4.2.6.4 due to insufficient input sanitization and output escaping on user supplied attributes. This makes it possible for authenticated attackers, with contributor-level access and above, to inject arbitrary web scripts in pages that will execute whenever a user accesses an injected page.",Wordpress,Learnpress – WordPress Lms Plugin,5.4,MEDIUM,0.00044999999227002263,false,,false,false,false,,false,false,2024-04-19T01:57:09.385Z,0
CVE-2024-1463,https://securityvulnerability.io/vulnerability/CVE-2024-1463,Stored Cross-Site Scripting in LearnPress LMS Plugin for WordPress,"The LearnPress LMS Plugin for WordPress is susceptible to stored cross-site scripting, allowing attackers with LP Instructor-level access to inject malicious web scripts through the Course, Lesson, and Quiz titles and content. This vulnerability stems from inadequate input sanitization and output escaping, potentially leading to the execution of arbitrary scripts when a user accesses affected pages. Users are encouraged to upgrade to the latest version to mitigate this risk.",Wordpress,Learnpress – WordPress Lms Plugin,4.8,MEDIUM,0.00044999999227002263,false,,false,false,false,,false,false,2024-04-09T18:59:12.301Z,0
CVE-2024-1289,https://securityvulnerability.io/vulnerability/CVE-2024-1289,LearnPress Vulnerable to Insecure Direct Object Reference,"The LearnPress – WordPress LMS Plugin plugin for WordPress is vulnerable to Insecure Direct Object Reference in all versions up to, and including, 4.2.6.3 due to missing validation on a user controlled key when looking up order information. This makes it possible for authenticated attackers to obtain information on orders placed by other users and guests, which can be leveraged to sign up for paid courses that were purchased by guests. Emails of other users are also exposed.",Wordpress,Learnpress – WordPress Lms Plugin,5.4,MEDIUM,0.00044999999227002263,false,,false,false,false,,false,false,2024-04-09T18:58:31.705Z,0
CVE-2023-6567,https://securityvulnerability.io/vulnerability/CVE-2023-6567,SQL Injection Vulnerability in LearnPress Plugin for WordPress,"The LearnPress plugin for WordPress has a vulnerability that allows unauthenticated attackers to exploit time-based SQL Injection through the 'order_by' parameter. This vulnerability persists in all versions up to and including 4.2.5.7, resulting from inadequate escaping of user-supplied input and poor preparation of existing SQL queries. Attackers can inject additional SQL queries into the system, which could lead to unauthorized access and extraction of sensitive information from the database.",Wordpress,LearnPress – WordPress LMS Plugin,7.5,HIGH,0.13655999302864075,false,,false,false,true,true,false,false,2024-01-11T08:32:37.107Z,0
CVE-2023-6634,https://securityvulnerability.io/vulnerability/CVE-2023-6634,LearnPress Plugin Vulnerable to Command Injection,"The LearnPress plugin for WordPress is impacted by a Command Injection vulnerability across all versions up to and including 4.2.5.7. The vulnerability arises from the plugin's use of the call_user_func function, which processes user input inappropriately. This vulnerability enables unauthenticated attackers to execute any public function that accepts a single parameter, leading to potential remote code execution. Administrators are advised to update the LearnPress plugin to a patched version to mitigate this security risk.",Wordpress,LearnPress – WordPress LMS Plugin,9.8,CRITICAL,0.09973999857902527,false,,false,false,true,true,false,false,2024-01-11T08:32:28.636Z,0
CVE-2023-6223,https://securityvulnerability.io/vulnerability/CVE-2023-6223,Insecure Direct Object Reference in LearnPress Plugin for WordPress,"The LearnPress plugin for WordPress suffers from an Insecure Direct Object Reference vulnerability that impacts all versions up to and including 4.2.5.7. This issue is found in the /wp-json/lp/v1/profile/course-tab REST API, where the absence of proper validation on the 'userID' parameter allows authenticated users with subscriber-level access and above to exploit the vulnerability. Attackers can potentially gain unauthorized access to sensitive information such as another user's course progress, posing a significant risk to user privacy and data integrity.",Wordpress,LearnPress – WordPress LMS Plugin,4.3,MEDIUM,0.0004799999878741801,false,,false,false,false,,false,false,2024-01-11T06:49:32.006Z,0
CVE-2022-47615,https://securityvulnerability.io/vulnerability/CVE-2022-47615,WordPress LearnPress Plugin <= 4.1.7.3.2 is vulnerable to Local File Inclusion,"A Local File Inclusion vulnerability has been identified in the LearnPress WordPress LMS Plugin, affecting versions up to 4.1.7.3.2. This flaw allows an attacker to include files from the server's local file system, potentially leading to the exposure of sensitive information or the execution of malicious code, thereby compromising the security of the application. Users are advised to update to the latest version to mitigate risks associated with this vulnerability.",Wordpress,LearnPress – WordPress LMS Plugin,9.8,CRITICAL,0.16218000650405884,false,,false,false,true,true,false,false,2023-01-26T21:18:00.000Z,0
CVE-2022-45808,https://securityvulnerability.io/vulnerability/CVE-2022-45808,WordPress LearnPress Plugin <= 4.1.7.3.2 is vulnerable to SQL Injection,"An SQL Injection vulnerability exists in the LearnPress plugin for WordPress, affecting versions up to 4.1.7.3.2. This flaw allows attackers to manipulate SQL queries by injecting malicious code into input fields, potentially exposing sensitive data or altering the database's content. As a result, it poses significant risks to websites using this plugin. Administrators are advised to update to the latest version promptly to mitigate security risks.",Wordpress,LearnPress – WordPress LMS Plugin,9.8,CRITICAL,0.0026499999221414328,false,,false,false,true,true,false,false,2023-01-26T21:17:00.000Z,0
CVE-2022-45820,https://securityvulnerability.io/vulnerability/CVE-2022-45820,WordPress LearnPress Plugin <= 4.1.7.3.2 is vulnerable to SQL Injection,"The LearnPress plugin, a popular Learning Management System (LMS) for WordPress, contains a SQL injection vulnerability that allows attackers to manipulate database queries. This flaw could enable unauthorized access to sensitive data, including user details and site configurations. The issue affects versions of the plugin up to and including 4.1.7.3.2, necessitating immediate updates to mitigate potential exploitation. Site administrators should apply the latest patches to ensure robust security.",Wordpress,Learnpress – WordPress Lms Plugin,9.1,CRITICAL,0.0014299999456852674,false,,false,false,false,,false,false,2023-01-26T21:17:00.000Z,0
CVE-2022-3360,https://securityvulnerability.io/vulnerability/CVE-2022-3360,LearnPress < 4.1.7.2 - Unauthenticated PHP Object Injection via REST API,"The LearnPress WordPress plugin before 4.1.7.2 unserialises user input in a REST API endpoint available to unauthenticated users, which could lead to PHP Object Injection when a suitable gadget is present, leadint to remote code execution (RCE). To successfully exploit this vulnerability attackers must have knowledge of the site secrets, allowing them to generate a valid hash via the wp_hash() function.",Wordpress,Learnpress – WordPress Lms Plugin,8.1,HIGH,0.004749999847263098,false,,false,false,false,,false,false,2022-10-31T00:00:00.000Z,0
CVE-2022-0271,https://securityvulnerability.io/vulnerability/CVE-2022-0271,LearnPress < 4.1.6 - Reflected Cross-Site Scripting,"The LearnPress WordPress plugin before 4.1.6 does not sanitise and escape the lp-dismiss-notice before outputting it back via the lp_background_single_email AJAX action, leading to a Reflected Cross-Site Scripting",Wordpress,Learnpress – WordPress Lms Plugin,6.1,MEDIUM,0.0011699999449774623,false,,false,false,false,,false,false,2022-04-11T14:40:41.000Z,0
CVE-2021-24951,https://securityvulnerability.io/vulnerability/CVE-2021-24951,LearnPress < 4.1.4 - Admin+ SQL Injection,"The LearnPress WordPress plugin before 4.1.4 does not sanitise, validate and escape the id parameter before using it in SQL statements when duplicating course/lesson/quiz/question, leading to SQL Injections issues",Wordpress,Learnpress – WordPress Lms Plugin,9.8,CRITICAL,0.0026700000744313,false,,false,false,false,,false,false,2021-12-13T10:41:26.000Z,0
CVE-2021-24702,https://securityvulnerability.io/vulnerability/CVE-2021-24702,LearnPress < 4.1.3.1 - Multiple Admin+ Stored Cross-Site Scripting,"The LearnPress WordPress plugin before 4.1.3.1 does not properly sanitize or escape various inputs within course settings, which could allow high privilege users to perform Cross-Site Scripting attacks when the unfiltred_html capability is disallowed",Wordpress,Learnpress – WordPress Lms Plugin,4.8,MEDIUM,0.000539999979082495,false,,false,false,false,,false,false,2021-10-18T13:46:00.000Z,0