| CVE ID | Title | Vendor | Product | Severity | CVSS Score | Published At | AI Analysis |
|---|---|---|---|---|---|---|---|
| CVE-2023-6634 | LearnPress <= 4.2.5.7 - Command Injection | thimpress | LearnPress – WordPress LMS Plugin for Create and Sell Online Courses | High | 8.1 | 2024-01-11 08:32:29 | Deep Dive |
| CVE-2023-6223 | LearnPress <= 4.2.5.7 - Insecure Direct Object Reference to Information Disclosure | thimpress | LearnPress – WordPress LMS Plugin for Create and Sell Online Courses | Medium | 4.3 | 2024-01-11 06:49:32 | Deep Dive |
| CVE-2023-49829 | WordPress Tutor LMS Plugin <= 2.2.4 is vulnerable to Cross Site Scripting (XSS) | Themeum | Tutor LMS – eLearning and online course solution | Medium | 5.9 | 2023-12-15 15:30:36 | Deep Dive |
| CVE-2023-40629 | Extension - king-products.net - SQLi vulnerability in LMS Lite component for Joomla 1.0.0-3.3.0.1 | king-products.net | LMS Lite component for Joomla | - | - | 2023-12-14 08:52:01 | Deep Dive |
| CVE-2023-6359 | Cross-Site Scripting in Alumne LMS | Grupo Alumne | Alumne LMS | Medium | 5.4 | 2023-11-28 12:01:34 | Deep Dive |
| CVE-2023-6160 | LifterLMS <= 7.4.2 - Authenticated(Administrator+) Directory Traversal to Arbitrary CSV File Deletion | chrisbadgett | LifterLMS – WP LMS for eLearning, Online Courses, & Quizzes | Low | 3.3 | 2023-11-22 15:33:26 | Deep Dive |
| CVE-2023-4602 | Namaste! LMS <= 2.6.1.1 - Reflected Cross-Site Scripting | prasunsen | Namaste! LMS | Medium | 6.1 | 2023-11-15 12:44:53 | Deep Dive |
| CVE-2023-25700 | WordPress Tutor LMS Plugin <= 2.1.10 is vulnerable to SQL Injection | Themeum | Tutor LMS | 超危 | - | 2023-11-03 16:44:47 | Deep Dive |
| CVE-2023-25800 | WordPress Tutor LMS Plugin <= 2.2.0 is vulnerable to SQL Injection | Themeum | Tutor LMS | 高危 | - | 2023-11-03 16:26:13 | Deep Dive |
| CVE-2023-25990 | WordPress Tutor LMS Plugin <= 2.1.10 is vulnerable to SQL Injection | Themeum | Tutor LMS | 高危 | - | 2023-11-03 16:22:47 | Deep Dive |
| CVE-2023-28777 | WordPress LearnDash LMS Plugin <= 4.5.3 is vulnerable to SQL Injection | LearnDash | LearnDash LMS | 高危 | - | 2023-10-31 13:58:37 | Deep Dive |
| CVE-2023-4805 | Tutor LMS < 2.3.0 - Subscriber+ Stored Cross-Site Scripting | Unknown | Tutor LMS | 中危 | - | 2023-10-16 19:39:07 | Deep Dive |
| CVE-2023-5555 | Cross-site Scripting (XSS) - Generic in frappe/lms | frappe | frappe/lms | 中危 | - | 2023-10-12 10:32:06 | Deep Dive |
| CVE-2023-40607 | WordPress CLUEVO LMS, E-Learning Platform Plugin <= 1.10.0 is vulnerable to Cross Site Request Forgery (CSRF) | CLUEVO | CLUEVO LMS, E-Learning Platform | Medium | 4.3 | 2023-10-06 14:51:16 | Deep Dive |
| CVE-2023-42807 | Frappe LMS SQL Injection Issue on People Page | frappe | lms | Medium | 6.3 | 2023-09-21 16:37:49 | Deep Dive |
| CVE-2023-4974 | Academy LMS GET Parameter filter sql injection | Academy | LMS | Medium | 6.3 | 2023-09-15 02:00:11 | Deep Dive |
| CVE-2023-4973 | Academy LMS GET Parameter filter cross site scripting | Academy | LMS | Low | 3.5 | 2023-09-15 02:00:10 | Deep Dive |
| CVE-2023-4278 | MasterStudy LMS < 3.0.18 - Unauthenticated Instructor Account Creation | Unknown | MasterStudy LMS WordPress Plugin | 高危 | - | 2023-09-11 19:46:09 | Deep Dive |
| CVE-2023-4119 | Academy LMS courses cross site scripting | Academy | LMS | Medium | 4.3 | 2023-08-03 08:31:03 | Deep Dive |
| CVE-2023-3345 | LMS by Masteriyo < 1.6.8 - Information Exposure | Unknown | LMS by Masteriyo | 中危 | - | 2023-07-31 09:37:36 | Deep Dive |