| CVE ID | Title | Vendor | Product | Severity | CVSS Score | Published At | AI Analysis |
|---|---|---|---|---|---|---|---|
| CVE-2025-69097 | WordPress WPLMS plugin <= 1.9.9.5.4 - Arbitrary File Deletion vulnerability | VibeThemes | WPLMS | High | 8.6 | 2026-01-22 16:52:26 | Deep Dive |
| CVE-2025-63035 | WordPress WPLMS plugin <= 1.9.9.5.4 - Cross Site Scripting (XSS) vulnerability | VibeThemes | WPLMS | - | - | 2025-12-09 14:52:30 | Deep Dive |
| CVE-2025-53420 | WordPress WPLMS plugin <= 1.9.9.8 - Cross Site Scripting (XSS) vulnerability | VibeThemes | WPLMS | - | - | 2025-10-22 14:32:32 | Deep Dive |
| CVE-2025-49925 | WordPress WPLMS plugin <= 1.9.9.7 - Broken Access Control vulnerability | VibeThemes | WPLMS | High | 7.5 | 2025-10-22 14:32:14 | Deep Dive |
| CVE-2025-58668 | WordPress WPLMS theme <= 4.970 - Broken Access Control vulnerability | VibeThemes | WPLMS | Medium | 4.3 | 2025-09-22 18:22:56 | Deep Dive |
| CVE-2015-10139 | WPLMS Learning Management System for WordPress, WordPress LMS <= 1.8.4.1 - Privilege Escalation | VibeThemes | WPLMS Learning Management System for WordPress, WordPress LMS | High | 8.8 | 2025-07-19 11:23:37 | Deep Dive |
| CVE-2025-32493 | WordPress BP Social Connect plugin <= 1.6.2 - Cross Site Scripting (XSS) Vulnerability | VibeThemes | BP Social Connect | Medium | 5.9 | 2025-04-09 16:09:48 | Deep Dive |
| CVE-2024-56045 | WordPress WPLMS plugin < 1.9.9.5 - Unauthenticated Arbitrary Directory Deletion vulnerability | VibeThemes | WPLMS | Critical | 9.3 | 2024-12-31 13:17:49 | Deep Dive |
| CVE-2024-56044 | WordPress WPLMS plugin <= 1.9.9 - Unauthenticated Arbitrary User Token Generation vulnerability | VibeThemes | WPLMS | Critical | 9.8 | 2024-12-31 13:17:03 | Deep Dive |
| CVE-2024-56043 | WordPress WPLMS plugin <= 1.9.9 - Unauthenticated Privilege Escalation vulnerability | VibeThemes | WPLMS | Critical | 9.8 | 2024-12-31 13:16:00 | Deep Dive |
| CVE-2024-56040 | WordPress VibeBP plugin <= 1.9.9.4.1 - Unauthenticated Privilege Escalation vulnerability | VibeThemes | VibeBP | Critical | 9.8 | 2024-12-31 13:15:12 | Deep Dive |
| CVE-2024-56042 | WordPress WPLMS plugin < 1.9.9.5.3 - Unauthenticated SQL Injection vulnerability | VibeThemes | WPLMS | Critical | 9.3 | 2024-12-31 12:57:48 | Deep Dive |
| CVE-2024-56041 | WordPress VibeBP plugin < 1.9.9.5.1 - SQL Injection vulnerability | VibeThemes | VibeBP | High | 8.5 | 2024-12-31 12:57:11 | Deep Dive |
| CVE-2024-56039 | WordPress VibeBP plugin < 1.9.9.7.7 - Unauthenticated SQL Injection vulnerability | VibeThemes | VibeBP | Critical | 9.3 | 2024-12-31 12:55:11 | Deep Dive |
| CVE-2024-56046 | WordPress WPLMS plugin <= 1.9.9 - Unauthenticated Arbitrary File Upload vulnerability | VibeThemes | WPLMS | Critical | 10.0 | 2024-12-31 12:53:33 | Deep Dive |
| CVE-2024-56047 | WordPress WPLMS plugin < 1.9.9.5.3 - Subscriber+ SQL Injection vulnerability | VibeThemes | WPLMS | High | 8.5 | 2024-12-18 18:59:00 | Deep Dive |
| CVE-2024-56053 | WordPress WPLMS plugin < 1.9.9.5.3 - Instructor+ SQL Injection vulnerability | VibeThemes | WPLMS | High | 7.6 | 2024-12-18 18:58:15 | Deep Dive |
| CVE-2024-56048 | WordPress WPLMS plugin <= 1.9.9 - Arbitrary Option Update to Privilege Escalation vulnerability | VibeThemes | WPLMS | High | 8.8 | 2024-12-18 18:57:27 | Deep Dive |
| CVE-2024-56050 | WordPress WPLMS plugin < 1.9.9.5.3 - Subscriber+ Arbitrary File Upload vulnerability | VibeThemes | WPLMS | Critical | 9.9 | 2024-12-18 18:56:31 | Deep Dive |
| CVE-2024-56052 | WordPress WPLMS plugin < 1.9.9.5.2 - Student+ Arbitrary File Upload vulnerability | VibeThemes | WPLMS | Critical | 9.9 | 2024-12-18 18:55:19 | Deep Dive |