Filter
AND

Software

thimpress learnpress
20
thimpress wp hotel booking
5
thimpress thim elementor kit
3
thimpress learnpress export import
1
thimpress wp pipes
1

LearnPress – WordPress LMS PluginWordPress Learnpress plugin <= 4.2.7.1 - Open Redirection vulnerability

medium
4.7
EPSS
0.06%
First published (updated )
CVE-2025-24740

LearnPress – WordPress LMS PluginLearnPress – WordPress LMS Plugin <= 4.2.7.5 - Authenticated (LP Instructor+) Stored Cross-Site Scripting via Lesson Name

medium
6.4
First published (updated )
CVE-2024-13599

ThimPress Thim Elementor KitWordPress Thim Elementor Kit Plugin <= 1.2.8 - Broken Access Control vulnerability

medium
4.3
EPSS
0.04%
First published (updated )
CVE-2025-24725

ThimPress WP Hotel BookingWP Hotel Booking <= 2.1.6 - Missing Authorization to Authenticated (Subscriber+) User Email Retrieval

medium
4.3
First published (updated )
CVE-2024-13447

ThimPress WP Hotel BookingWP Hotel Booking <= 2.1.5 - Missing Authorization

medium
5.3
First published (updated )
CVE-2024-12370

Never miss a vulnerability like this again

Sign up to SecAlerts for real-time vulnerability data matched to your software, aggregated from hundreds of sources.

Read MoreStart Free Trial

ThimPress Thim Elementor KitWordPress Thim Elementor Kit plugin <= 1.2.8 - Cross Site Scripting (XSS) vulnerability

medium
6.5
EPSS
0.04%
First published (updated )
CVE-2025-22312

ThimPress LearnPressLearnPress – WordPress LMS Plugin <= 4.2.7.3 - Course Material Sensitive Information Exposure via REST API

medium
5.3
First published (updated )
CVE-2024-11868

ThimPress LearnPress Export ImportLearnPress Export Import – WordPress extension for LearnPress <= 4.0.4 - Reflected Cross-Site Scripting

medium
6.1
EPSS
0.05%
First published (updated )
CVE-2024-9609

LearnPress – WordPress LMS PluginWordPress LearnPress plugin <= 4.2.6.8.2 - Insecure Direct Object References (IDOR) vulnerability

medium
6.5
First published (updated )
CVE-2024-39642

ThimPress LearnPressLearnPress – WordPress LMS Plugin <= 4.2.6.8.1 - Unauthenticated Bypass to User Registration

medium
5.3
EPSS
0.05%
First published (updated )
CVE-2024-6099

Never miss a vulnerability like this again

Sign up to SecAlerts for real-time vulnerability data matched to your software, aggregated from hundreds of sources.

Read MoreStart Free Trial

ThimPress LearnPressLearnPress – WordPress LMS Plugin <= 4.2.6.8.1 - Missing Authorization to Unauthenticated User Registration Bypass

medium
5.3
EPSS
0.05%
First published (updated )
CVE-2024-6088

ThimPress LearnPressLearnPress – WordPress LMS Plugin <= 4.2.6.8 - Basic Information Disclosure via JSON API

medium
5.3
EPSS
0.05%
First published (updated )
CVE-2024-5483

ThimPress LearnPressLearnPress – WordPress LMS Plugin <= 4.2.6.6 - Authenticated (Contributor+) Stored Cross-Site Scripting via id Parameter

medium
6.4
EPSS
0.04%
First published (updated )
CVE-2024-4971

ThimPress LearnPressLearnPress – WordPress LMS Plugin <= 4.2.6.5 - Authenticated (Contributor+) Stored Cross-Site Scripting via layout_html Parameter

medium
6.4
EPSS
0.04%
First published (updated )
CVE-2024-4277

ThimPress LearnPressLearnPress – WordPress LMS Plugin <= 4.2.6.5 - Unauthenticated Bypass to User Registration

medium
6.5
EPSS
0.05%
First published (updated )
CVE-2024-4444

Never miss a vulnerability like this again

Sign up to SecAlerts for real-time vulnerability data matched to your software, aggregated from hundreds of sources.

Read MoreStart Free Trial

ThimPress Thim Elementor KitWordPress Thim Elementor Kit plugin <= 1.1.8 - Cross Site Scripting (XSS) vulnerability

medium
6.5
EPSS
0.04%
First published (updated )
CVE-2024-34415

ThimPress LearnPressXSS

medium
6.4
EPSS
0.04%
First published (updated )
CVE-2024-3560

ThimPress LearnPressXSS

medium
4.8
First published (updated )
CVE-2024-1463

ThimPress LearnPressThe LearnPress – WordPress LMS Plugin plugin for WordPress is vulnerable to Insecure Direct Object R…

medium
6.5
First published (updated )
CVE-2024-1289

ThimPress LearnPressLearnPress < 4.2.5.5 - Reflected Cross-Site Scripting

medium
6.1
First published (updated )
CVE-2023-5558

Never miss a vulnerability like this again

Sign up to SecAlerts for real-time vulnerability data matched to your software, aggregated from hundreds of sources.

Read MoreStart Free Trial

ThimPress LearnPressThe LearnPress plugin for WordPress is vulnerable to Insecure Direct Object Reference in all version…

medium
4.3
EPSS
0.04%
First published (updated )
CVE-2023-6223

ThimPress WP Hotel BookingWP Hotel Booking < 2.0.8 - Subscriber+ Arbitrary Post Deletion

medium
5.4
EPSS
0.04%
First published (updated )
CVE-2023-5651

ThimPress WP Hotel BookingWP Hotel Booking < 2.0.9 - Contributor+ Arbitrary Post Deletion

medium
5.4
EPSS
0.04%
First published (updated )
CVE-2023-5799

Thimpress Wp PipesWordPress WP Pipes Plugin <= 1.4.0 is vulnerable to Cross Site Request Forgery (CSRF)

medium
6.5
First published (updated )
CVE-2023-40009

ThimPress WP Hotel BookingCSRF

medium
4.3
First published (updated )
CVE-2020-36757

Never miss a vulnerability like this again

Sign up to SecAlerts for real-time vulnerability data matched to your software, aggregated from hundreds of sources.

Read MoreStart Free Trial

ThimPress LearnPressLearnPress < 4.1.6 - Reflected Cross-Site Scripting

medium
6.1
First published (updated )
CVE-2022-0271

ThimPress LearnPressLearnPress < 4.1.5 - Arbitrary Image Renaming

medium
4.3
First published (updated )
CVE-2022-0377

ThimPress LearnPressLearnPress – WordPress LMS Plugin <= 4.1.3.1 Authenticated Stored Cross-Site Scripting

medium
5.5
First published (updated )
CVE-2021-39348

ThimPress LearnPressLearnPress < 4.1.3.1 - Multiple Admin+ Stored Cross-Site Scripting

medium
4.8
First published (updated )
CVE-2021-24702

ThimPress LearnPressbe_teacher in class-lp-admin-ajax.php in the LearnPress plugin 3.2.6.5 and earlier for WordPress all…

medium
6.5
First published (updated )
CVE-2020-7916

Never miss a vulnerability like this again

Sign up to SecAlerts for real-time vulnerability data matched to your software, aggregated from hundreds of sources.

Read MoreStart Free Trial

Company

Resources

Contact

SecAlerts Pty Ltd.
132 Wickham Terrace
Fortitude Valley,
QLD 4006, Australia
info@secalerts.co
By using SecAlerts services, you agree to our services end-user license agreement. This website is safeguarded by reCAPTCHA and governed by the Google Privacy Policy and Terms of Service. All names, logos, and brands of products are owned by their respective owners, and any usage of these names, logos, and brands for identification purposes only does not imply endorsement. If you possess any content that requires removal, please get in touch with us.
© 2025 SecAlerts Pty Ltd.
ABN: 70 645 966 203, ACN: 645 966 203