High-Severity Vulnerabilities Patched in LearnPress
|
System information
|
| |
|
|
Affected software |
Wordpress |
Description
|
On March 16, 2020, LearnPress – WordPress LMS Plugin, a WordPress plugin with over 80,000 installations, patched a high-severity vulnerability that allowed subscriber-level users to elevate their permissions to those of an “LP Instructor”, a custom role with capabilities similar to the WordPress “author” role, including the ability to upload files and create posts containing […]
More info:
https://www.wordfence.com/blog/2020/04/high-severity-vulnerabilities-patched-in-learnpress/ |
Standar resources
|
|
Property |
Value |
|
CVE |
CVE-2020-11511 and CVE-2020-11510. |
