Known Vulnerabilities for products from Lifterlms
Listed below are 9 of the newest known vulnerabilities associated with the vendor "Lifterlms".
These CVEs are retrieved based on exact matches on listed vendor information (CPE data) as well as a keyword search to ensure the newest vulnerabilities with no officially listed vendor information are still displayed.
Data on known vulnerable products is also displayed based on information from known CPEs, each product links to its respective vulnerability page.
Known Vulnerabilities
| CVE | Shortened Description | Severity | Publish Date | Last Modified |
|---|---|---|---|---|
| CVE-2026-5207 json | Not Provided | 2026-04-11 | 2026-04-11 | |
| CVE-2025-52717 json | Improper Neutralization of Special Elements used in an SQL Command ('SQL Injection') vulnerability in chrisbadgett LifterLMS ... | Not Provided | 2025-06-27 | 2026-04-01 |
| CVE-2024-4743 json | The LifterLMS – WordPress LMS Plugin for eLearning plugin for WordPress is vulnerable to SQL Injection via the orderBy attr... | Not Provided | 2024-06-05 | 2026-04-08 |
| CVE-2024-0377 json | The LifterLMS – WordPress LMS Plugin for eLearning plugin for WordPress is vulnerable to unauthorized modification of data ... | Not Provided | 2024-03-13 | 2026-04-08 |
| CVE-2023-6160 json | The LifterLMS – WordPress LMS Plugin for eLearning plugin for WordPress is vulnerable to Directory Traversal in versions up... | Not Provided | 2023-11-22 | 2026-04-08 |
| CVE-2022-1250 json | The LifterLMS PayPal WordPress plugin before 1.4.0 does not sanitise and escape some parameters from the payment confirmation... | 6.1 - MEDIUM | 2022-05-02 | 2022-05-09 |
| CVE-2021-24562 json | The LMS by LifterLMS – Online Course, Membership & Learning Management System Plugin for WordPress plugin before 4.21.2 was... | 7.5 - HIGH | 2021-08-23 | 2023-11-07 |
| CVE-2021-24308 json | The 'State' field of the Edit profile page of the LMS by LifterLMS – Online Course, Membership & Learning Management System... | 5.4 - MEDIUM | 2021-05-24 | 2021-06-03 |
| CVE-2020-6008 json | LifterLMS Wordpress plugin version below 3.37.15 is vulnerable to arbitrary file write leading to remote code execution | 9.8 - CRITICAL | 2020-03-31 | 2020-04-01 |
| CVE-2019-15896 json | An issue was discovered in the LifterLMS plugin through 3.34.5 for WordPress. The upload_import function in the class.llms.ad... | 9.8 - CRITICAL | 2019-09-10 | 2021-07-21 |
Known software with vulnerabilities from Lifterlms
| Type | Vendor | Product | Version |
|---|---|---|---|
| Application | Lifterlms | Lifterlms | - |