Filter
Software
LearnPress – WordPress LMS PluginWordPress Learnpress plugin <= 4.2.7.1 - Open Redirection vulnerability
4.7
EPSS
0.06%
First published (updated )
WordPress FundPressWordPress FundPress plugin <= 2.0.6 - PHP Object Injection vulnerability
9.8
EPSS
0.04%
First published (updated )
LearnPress – WordPress LMS PluginLearnPress – WordPress LMS Plugin <= 4.2.7.5 - Authenticated (LP Instructor+) Stored Cross-Site Scripting via Lesson Name
6.4
First published (updated )
ThimPress Thim Elementor KitWordPress Thim Elementor Kit Plugin <= 1.2.8 - Broken Access Control vulnerability
4.3
EPSS
0.04%
First published (updated )
ThimPress WP Hotel BookingWP Hotel Booking <= 2.1.6 - Missing Authorization to Authenticated (Subscriber+) User Email Retrieval
4.3
First published (updated )
Never miss a vulnerability like this again
Sign up to SecAlerts for real-time vulnerability data matched to your software, aggregated from hundreds of sources.
ThimPress WP Hotel BookingWP Hotel Booking <= 2.1.5 - Missing Authorization
5.3
First published (updated )
ThimPress Thim Elementor KitWordPress Thim Elementor Kit plugin <= 1.2.8 - Cross Site Scripting (XSS) vulnerability
6.5
EPSS
0.04%
First published (updated )
ThimPress LearnPressLearnPress – WordPress LMS Plugin <= 4.2.7.3 - Course Material Sensitive Information Exposure via REST API
5.3
First published (updated )
ThimPress LearnPress Export ImportLearnPress Export Import – WordPress extension for LearnPress <= 4.0.4 - Reflected Cross-Site Scripting
6.1
EPSS
0.05%
First published (updated )
ThimPress WP Hotel BookingWordPress WP Hotel Booking plugin <= 2.1.4 - Local File Inclusion vulnerability
8.8
First published (updated )
Never miss a vulnerability like this again
Sign up to SecAlerts for real-time vulnerability data matched to your software, aggregated from hundreds of sources.
ThimPress WP Hotel BookingWP Hotel Booking <= 2.1.2 - Authenticated (Subscriber+) Arbitrary File Upload
8.8
EPSS
0.06%
First published (updated )
ThimPress LearnPressLearnPress – WordPress LMS Plugin <= 4.2.7 - Unauthenticated SQL Injection via 'c_only_fields'
10
EPSS
2.76%
First published (updated )
ThimPress LearnPressLearnPress – WordPress LMS Plugin <= 4.2.7 - Unauthenticated SQL Injection via 'c_fields'
10
EPSS
0.09%
First published (updated )
Thimpress Wp Events Manager WordpressWP Events Manager <= 2.1.11 - Authenticated (Subscriber+) Time-Based SQL Injection
8.8
EPSS
0.06%
First published (updated )
ThimPress LearnPressWordPress LearnPress plugin <= 4.2.6.8.2 - Cross Site Request Forgery (CSRF) vulnerability
8.8
First published (updated )
Never miss a vulnerability like this again
Sign up to SecAlerts for real-time vulnerability data matched to your software, aggregated from hundreds of sources.
LearnPress – WordPress LMS PluginWordPress LearnPress plugin <= 4.2.6.8.2 - Insecure Direct Object References (IDOR) vulnerability
6.5
First published (updated )
ThimPress LearnPressLearnPress – WordPress LMS Plugin <= 4.2.6.9.3 - Authenticated (Contributor+) SQL Injection via order Parameter
8.8
EPSS
0.04%
First published (updated )
ThimPress LearnPressLearnPress <= 4.2.6.8.2 - Authenticated (Contributor+) Local File Inclusion
8.8
EPSS
0.06%
First published (updated )
ThimPress LearnPressLearnPress – WordPress LMS Plugin <= 4.2.6.8.1 - Unauthenticated Bypass to User Registration
5.3
EPSS
0.05%
First published (updated )
ThimPress LearnPressLearnPress – WordPress LMS Plugin <= 4.2.6.8.1 - Missing Authorization to Unauthenticated User Registration Bypass
5.3
EPSS
0.05%
First published (updated )
Never miss a vulnerability like this again
Sign up to SecAlerts for real-time vulnerability data matched to your software, aggregated from hundreds of sources.
ThimPress WP Hotel BookingWP Hotel Booking <= 2.1.0 - Unauthenticated SQL Injection
10
First published (updated )
ThimPress LearnPressWordPress LearnPress plugin <= 4.2.3 - Unauthenticated Broken Access Control vulnerability
9.8
First published (updated )
ThimPress LearnPressWordPress LearnPress plugin <= 4.2.3 - Authenticated Broken Access Control vulnerability
8.8
First published (updated )
Thimpress Eduma WordpressWordPress Eduma theme <= 5.4.7 - Reflected Cross Site Scripting (XSS) vulnerability
7.1
First published (updated )
ThimPress LearnPressLearnPress – WordPress LMS Plugin <= 4.2.6.8 - Basic Information Disclosure via JSON API
5.3
EPSS
0.05%
First published (updated )
Never miss a vulnerability like this again
Sign up to SecAlerts for real-time vulnerability data matched to your software, aggregated from hundreds of sources.
ThimPress LearnPressLearnPress – WordPress LMS Plugin <= 4.2.6.6 - Authenticated (Contributor+) Stored Cross-Site Scripting via id Parameter
6.4
EPSS
0.04%
First published (updated )
ThimPress LearnPressLearnPress – WordPress LMS Plugin <= 4.2.6.5 - Authenticated (Contributor+) Stored Cross-Site Scripting via layout_html Parameter
6.4
EPSS
0.04%
First published (updated )
ThimPress LearnPressLearnPress – WordPress LMS Plugin <= 4.2.6.5 - Unauthenticated Bypass to User Registration
6.5
EPSS
0.05%
First published (updated )
ThimPress LearnPressLearnPress – WordPress LMS Plugin <= 4.2.6.5 - Unauthenticated Time-Based SQL Injection
9.8
EPSS
0.06%
First published (updated )
ThimPress LearnPressLearnPress – WordPress LMS Plugin <= 4.2.6.5 - Authenticated (Instructor+) Arbitrary File Upload
8.8
EPSS
0.06%
First published (updated )
Never miss a vulnerability like this again
Sign up to SecAlerts for real-time vulnerability data matched to your software, aggregated from hundreds of sources.