CVE-2023-6634 | LearnPress Plugin up to 4.2.5.7 on WordPress command injection

Inserito da Angelo Barbosa | Gen 4, 2024 | CVE

A vulnerability, which was classified as critical, was found in LearnPress Plugin up to 4.2.5.7 on WordPress. Affected is an unknown function. The manipulation leads to command injection.

This vulnerability is traded as CVE-2023-6634. The attack needs to be done within the local network. There is no exploit available.

CVE-2023-6634 | LearnPress Plugin up to 4.2.5.7 on WordPress command injection

Post correlati

CVE-2024-24958 | AutomationDirect Productivity 3000 P3-550E 1.2.10.9 FileSystem API out-of-bounds write (icsa-24-144-01)

CVE-2024-5713 | If-So Dynamic Content Personalization Plugin up to 1.8.0.3 on WordPress Attribute $_SERVER[‘REQUEST_URI’] cross site scripting

CVE-2024-5161 | Magical Addons for Elementor Plugin up to 1.1.39 on WordPress cross site scripting

CVE-2023-37871 | WooCommerce GoCardless Plugin up to 2.5.6 on WordPress authorization