cleantalk
Vulnerabilities and Security Researches

LearnPress – WordPress LMS Plugin, CVE-2024-39642

CVE, Research URL

CVE-2024-39642

Published on
Aug 13, 2024
Research Description
Authorization Bypass Through User-Controlled Key vulnerability in ThimPress LearnPress allows Accessing Functionality Not Properly Constrained by ACLs.This issue affects LearnPress: from n/a through 4.2.6.8.2.
Affected versions
Min -, max 4.2.6.9.
Status
vulnerable