Miembros de
Boletines de Vulnerabilidades |
High-Severity Vulnerabilities Patched in LearnPress |
|
Información sobre el sistema |
|
| Software afectado | Wordpress |
Descripción |
|
|
On March 16, 2020, LearnPress – WordPress LMS Plugin, a WordPress plugin with over 80,000 installations, patched a high-severity vulnerability that allowed subscriber-level users to elevate their permissions to those of an “LP Instructor”, a custom role with capabilities similar to the WordPress “author” role, including the ability to upload files and create posts containing […] More info: https://www.wordfence.com/blog/2020/04/high-severity-vulnerabilities-patched-in-learnpress/ |
|
Identificadores estándar |
|
| Propiedad | Valor |
| CVE | CVE-2020-11511 and CVE-2020-11510. |
Histórico de versiones |
||
| Versión | Comentario | Fecha |
| 1.0 | Advisory issued | 2020-04-30 |