Wplearnmanager

wplearnmanager

1 CVE • 1 product

Products (1)

Click to collapse

Toggle

Wp Learn Manager

wp_learn_manager

1 CVE

CVEs (1)

CVE VENDORS PRODUCTS UPDATED PUBLISHED CVSS
CVE-2021-24504 1Wplearnmanager 1Wp Learn Manager Jun 17, 2026 Aug 2, 2021 N/A· v4 6.1 MEDIUM· v3 4.3 MEDIUM· v2 The WP LMS – Best WordPress LMS Plugin WordPress plugin through 1.1.2 does not properly sanitise or validate its User Field Titles, allowing XSS payload to be used in them. Furthermore, no CSRF and capability checks were...Show more The WP LMS – Best WordPress LMS Plugin WordPress plugin through 1.1.2 does not properly sanitise or validate its User Field Titles, allowing XSS payload to be used in them. Furthermore, no CSRF and capability checks were in place, allowing such attack to be performed either via CSRF or as any user (including unauthenticated)Show less

CVE

VENDORS

PRODUCTS

UPDATED

PUBLISHED

CVSS

CVE-2021-24504

1Wplearnmanager

1Wp Learn Manager

Jun 17, 2026

Aug 2, 2021

N/A· v4

6.1 MEDIUM· v3

4.3 MEDIUM· v2

The WP LMS – Best WordPress LMS Plugin WordPress plugin through 1.1.2 does not properly sanitise or validate its User Field Titles, allowing XSS payload to be used in them. Furthermore, no CSRF and capability checks were in place, allowing such attack to be performed either via CSRF or as any user (including unauthenticated)Show less