High-Severity Vulnerabilities Patched in LearnPress
|
Información sobre el sistema
|
|
|
Software afectado |
Wordpress |
Descripción
|
On March 16, 2020, LearnPress – WordPress LMS Plugin, a WordPress plugin with over 80,000 installations, patched a high-severity vulnerability that allowed subscriber-level users to elevate their permissions to those of an “LP Instructor”, a custom role with capabilities similar to the WordPress “author” role, including the ability to upload files and create posts containing […]
More info:
https://www.wordfence.com/blog/2020/04/high-severity-vulnerabilities-patched-in-learnpress/ |
Identificadores estándar
|
Propiedad |
Valor |
CVE |
CVE-2020-11511 and CVE-2020-11510. |