Goal Reached Thanks to every supporter — we hit 100%!

Goal: 1000 CNY · Raised: 1000 CNY

100.0%
Buy Us a Coffee
Vulnerability List
Clear Filters
Found 394 results
CVE IDTitleVendorProductSeverityCVSS ScorePublished AtAI Analysis
CVE-2024-50408 WordPress Namaste! LMS plugin <= 2.6.3 - PHP Object Injection vulnerability BobNamaste! LMS High 8.8 2024-10-28 11:32:13 Deep Dive
CVE-2022-4974 Freemius SDK <= 2.4.2 - Missing Authorization Checks dashlabsltdYASR – Yet Another Star Rating Plugin for WordPress Medium 6.3 2024-10-16 06:43:30 Deep Dive
CVE-2024-43990 WordPress Masterstudy LMS Starter theme <= 1.1.8 - Sensitive Data Exposure vulnerability StylemixThemesMasterstudy LMS Starter Medium 5.3 2024-09-25 14:47:30 Deep Dive
CVE-2024-8522 LearnPress – WordPress LMS Plugin <= 4.2.7 - Unauthenticated SQL Injection via 'c_only_fields' thimpressLearnPress – WordPress LMS Plugin for Create and Sell Online Courses Critical 10.0 2024-09-12 08:30:47 Deep Dive
CVE-2024-8529 LearnPress – WordPress LMS Plugin <= 4.2.7 - Unauthenticated SQL Injection via 'c_fields' thimpressLearnPress – WordPress LMS Plugin for Create and Sell Online Courses Critical 10.0 2024-09-12 08:30:46 Deep Dive
CVE-2023-2919 Tutor LMS <= 2.7.4 - Cross-Site Request Forgery via 'addon_enable_disable' themeumTutor LMS – eLearning and online course solution Medium 4.3 2024-09-10 09:30:19 Deep Dive
CVE-2024-7349 LifterLMS <= 7.7.5 - Authenticated (Admin+) SQL Injection chrisbadgettLifterLMS – WP LMS for eLearning, Online Courses, & Quizzes High 7.2 2024-09-06 06:50:51 Deep Dive
CVE-2024-7786 Sensei LMS < 4.24.2 - Unauthenticated Email Template Leak UnknownSensei LMS--2024-09-04 06:00:04 Deep Dive
CVE-2024-5784 Tutor LMS Pro <= 2.7.2 - Missing Authorization to Authenticated (Subscriber+) Insecure Direct Object Reference themeumTutor LMS Pro High 7.1 2024-08-30 03:24:16 Deep Dive
CVE-2024-39645 WordPress Tutor LMS plugin <= 2.7.2 - Cross Site Request Forgery (CSRF) vulnerability ThemeumTutor LMS Medium 5.4 2024-08-26 20:55:42 Deep Dive
CVE-2024-5576 Tutor LMS Elementor Addons <= 2.1.4 - Authenticated (Contributor+) Stored Cross-Site Scripting via Course Carousel Widget themeumTutor LMS Elementor Addons Medium 6.4 2024-08-20 05:30:03 Deep Dive
CVE-2024-35686 WordPress Sensei LMS plugin <= 4.23.1 - Broken Access Control vulnerability AutomatticSensei LMS Medium 5.3 2024-08-18 21:54:35 Deep Dive
CVE-2024-43282 WordPress Tutor LMS plugin <= 2.7.2 - SQL Injection vulnerability ThemeumTutor LMS High 7.6 2024-08-18 21:39:11 Deep Dive
CVE-2024-43239 WordPress Masteriyo LMS plugin <= 1.11.4 - Insecure Direct Object Reference (IDOR) vulnerability masteriyoMasteriyo - LMS Medium 4.3 2024-08-18 21:36:11 Deep Dive
CVE-2024-43231 WordPress Tutor LMS plugin <= 2.7.3 - Cross Site Scripting (XSS) vulnerability ThemeumTutor LMS Medium 6.5 2024-08-12 21:04:07 Deep Dive
CVE-2024-7548 LearnPress – WordPress LMS Plugin <= 4.2.6.9.3 - Authenticated (Contributor+) SQL Injection via order Parameter thimpressLearnPress – WordPress LMS Plugin for Create and Sell Online Courses High 8.8 2024-08-08 05:31:46 Deep Dive
CVE-2024-1798 Tutor LMS – Migration Tool <= 2.2.0 - Missing Authorization in tutor_lp_export_xml themeumTutor LMS – Migration Tool Medium 5.3 2024-07-27 01:51:02 Deep Dive
CVE-2024-1804 Tutor LMS – Migration Tool <= 2.2.0 - Missing Authorization in tutor_import_from_xml themeumTutor LMS – Migration Tool Medium 4.3 2024-07-27 01:51:01 Deep Dive
CVE-2024-6589 LearnPress <= 4.2.6.8.2 - Authenticated (Contributor+) Local File Inclusion thimpressLearnPress – WordPress LMS Plugin for Create and Sell Online Courses High 8.8 2024-07-25 10:59:52 Deep Dive
CVE-2024-38701 WordPress Academy LMS plugin <= 2.0.4 - Broken Access Control vulnerability Academy LMSAcademy LMS Medium 4.3 2024-07-22 10:14:44 Deep Dive