CVE-2025-14798 | LearnPress Plugin up to 4.3.2.4 on WordPress REST API get_item_permissions_check authorization

Inserito da Angelo Barbosa | Gen 19, 2026 | CVE

A vulnerability was found in LearnPress Plugin up to 4.3.2.4 on WordPress and classified as problematic. Impacted is the function get_item_permissions_check of the component REST API. Such manipulation leads to missing authorization.

This vulnerability is documented as CVE-2025-14798. The attack can be executed remotely. There is not any exploit available.

CVE-2025-14798 | LearnPress Plugin up to 4.3.2.4 on WordPress REST API get_item_permissions_check authorization

Post correlati

CVE-2024-7902 | pkp ojs up to 3.4.0-6 /login/signOut source redirect

CVE-2024-2182 | ovn BFD Packet access control

CVE-2024-22082 | Elspec G5 Digital Fault Recorder up to 1.1.4.15 Web Interface file information disclosure

CVE-2024-32961 | Creative Themes HQ Blocksy Plugin up to 2.0.33 on WordPress cross site scripting