Known Vulnerabilities for Learnpress by Thimpress

Listed below are 10 of the newest known vulnerabilities associated with "Learnpress" by "Thimpress".

These CVEs are retrieved based on exact matches on listed software, hardware, and vendor information (CPE data) as well as a keyword search to ensure the newest vulnerabilities with no officially listed software information are still displayed.

Data on known vulnerable versions is also displayed based on information from known CPEs

Known Vulnerabilities

CVE Shortened Description Severity Publish Date Last Modified
CVE-2023-30487 Unauth. Reflected Cross-Site Scripting (XSS) vulnerability in ThimPress LearnPress Export Import plugin <= 4.0.2 versions. Not Provided 2023-05-18 2023-05-18
CVE-2022-0377 Users of the LearnPress WordPress plugin before 4.1.5 can upload an image as a profile avatar after the registration. After t... 4.3 - MEDIUM 2022-02-28 2022-03-08
CVE-2022-0271 The LearnPress WordPress plugin before 4.1.6 does not sanitise and escape the lp-dismiss-notice before outputting it back via... 6.1 - MEDIUM 2022-04-11 2022-04-15
CVE-2021-39348 The LearnPress WordPress plugin is vulnerable to Stored Cross-Site Scripting due to insufficient escaping on the $custom_prof... 4.8 - MEDIUM 2021-10-21 2022-08-05
CVE-2021-24951 The LearnPress WordPress plugin before 4.1.4 does not sanitise, validate and escape the id parameter before using it in SQL s... 9.8 - CRITICAL 2021-12-13 2021-12-16
CVE-2021-24702 The LearnPress WordPress plugin before does not properly sanitize or escape various inputs within course settings, wh... 4.8 - MEDIUM 2021-10-18 2021-10-21
CVE-2020-11511 The LearnPress plugin before for WordPress allows remote attackers to escalate the privileges of any user to LP Instr... 8.1 - HIGH 2021-07-30 2022-12-09
CVE-2020-7916 be_teacher in class-lp-admin-ajax.php in the LearnPress plugin and earlier for WordPress allows any registered user t... 6.5 - MEDIUM 2020-03-16 2020-03-20
CVE-2020-6010 LearnPress Wordpress plugin version prior and including is vulnerable to SQL Injection 8.8 - HIGH 2020-04-30 2021-07-19
CVE-2018-16174 Open redirect vulnerability in LearnPress prior to version 3.1.0 allows remote attackers to redirect users to arbitrary web s... 6.1 - MEDIUM 2019-01-09 2019-01-11

Known Affected Configurations (CPE V2.3)

Type Vendor Product Version Update Edition Language

Popular searches for Learnpress

LearnPress - WordPress LMS Plugin

LearnPress is a comprehensive LMS solution for WordPress. This WordPress LMS Plugin can be used to easily create & sell courses online. Each course curriculum can be made with lessons & quizzes which can be managed with easy-to-use user interface, we really made it for lazy people.

WordPress Plug-in (computing) Windows Phone Online and offline User interface Website Quiz Usability Free software Theme (computing) Learning management system Solution WooCommerce Educational technology Drag and drop Lazy evaluation Download London, Midland and Scottish Railway Password 2012 24 Hours of Le Mans

LearnPress 3.0 is HERE! - ThimPress

LearnPress 3.0 is HERE! - ThimPress LearnPress Core new Power, expanding its abilities for many new tasks, improved current features and fixed a lot of bugs from the previous version plus a new user-friendly UI/UX . This theme is the most suitable to create an online course website for education centers, for Udemy/Teachable/Thinkific online instructors, tutors, and teacher, or a school website or website for a university. Your limit will be redefined with LearnPress 3.0. LearnPress ! ThimPress Education themes.

Website Windows Phone Plug-in (computing) Here (company) Educational technology WordPress Theme (computing) User experience Software bug Usability Password Udemy Online and offline User (computing) Email Intel Core Bluetooth Email address Free software Point of sale

© 2023 Twitter Nitter Twitter Viewer |

Use of this information constitutes acceptance for use in an AS IS condition. There are NO warranties, implied or otherwise, with regard to this information or its use. Any use of this information is at the user's risk. It is the responsibility of user to evaluate the accuracy, completeness or usefulness of any information, opinion, advice or other content. EACH USER WILL BE SOLELY RESPONSIBLE FOR ANY consequences of his or her direct or indirect use of this web site. ALL WARRANTIES OF ANY KIND ARE EXPRESSLY DISCLAIMED. This site will NOT BE LIABLE FOR ANY DIRECT, INDIRECT or any other kind of loss.

CVE, CWE, and OVAL are registred trademarks of The MITRE Corporation and the authoritative source of CVE content is MITRE's CVE web site. This site includes MITRE data granted under the following license. and Source URL Uptime Status