Filtered by vendor Learndash
Subscribe
Total
3 CVE
| CVE | Vendors | Products | Updated | CVSS v2 | CVSS v3 |
|---|---|---|---|---|---|
| CVE-2020-7108 | 1 Learndash | 1 Learndash | 2023-01-31 | 3.5 LOW | 5.4 MEDIUM |
| The LearnDash LMS plugin before 3.1.2 for WordPress allows XSS via the ld-profile search field. | |||||
| CVE-2018-25019 | 1 Learndash | 1 Learndash | 2021-11-03 | 5.0 MEDIUM | 7.5 HIGH |
| The LearnDash LMS WordPress plugin before 2.5.4 does not have any authorisation and validation of the file to be uploaded in the learndash_assignment_process_init() function, which could allow unauthenticated users to upload arbitrary files to the web server | |||||
| CVE-2020-6009 | 1 Learndash | 1 Learndash | 2020-04-02 | 7.5 HIGH | 9.8 CRITICAL |
| LearnDash Wordpress plugin version below 3.1.6 is vulnerable to Unauthenticated SQL Injection. | |||||