cleantalk
Vulnerabilities and Security Researches

LearnPress – WordPress LMS Plugin, CVE-2020-11511

CVE, Research URL

CVE-2020-11511

Published on
Jul 30, 2021
Research Description
The LearnPress plugin before 3.2.6.9 for WordPress allows remote attackers to escalate the privileges of any user to LP Instructor via the accept-to-be-teacher action parameter.
Affected versions
Min -, max 3.2.6.9.
Status
vulnerable