Main Vulnerability Database Vulnerabilities #VU27424

Improper access control in LearnPress - WordPress LMS Plugin - CVE-2020-11510

Published: April 29, 2020

Vulnerability identifier: #VU27424

CSH Severity: Medium

CVSS v4.0: CVSS:4.0/AV:N/AC:L/AT:N/PR:L/UI:N/VC:N/VI:L/VA:H/SC:N/SI:N/SA:N/E:U/U:Green

CVE-ID: CVE-2020-11510

CWE-ID: CWE-284

Exploitation vector: Remote access

Exploit availability: No public exploit available

Vendor: ThimPress

Affected software:
LearnPress - WordPress LMS Plugin

Detailed vulnerability description

The vulnerability allows a remote attacker to gain unauthorized access to otherwise restricted functionality.

The vulnerability exists due to improper access restrictions in several tasks via AJAX actions that lacked nonce checks and capability checks. A remote authenticated attacker can send a specially crafted request to "wp-admin/admin-ajax.php", publish or trash any existing post or page, or create the default pages, or even set it to a nonexistent status.

How to mitigate CVE-2020-11510

Install updates from vendor's website.

Improper access control in LearnPress - WordPress LMS Plugin - CVE-2020-11510

Detailed vulnerability description

How to mitigate CVE-2020-11510

Sources

Please verify you're human