module
Wordpress LearnPress current_items Authenticated SQLi
| Disclosed |
|---|
| Apr 29, 2020 |
Disclosed
Apr 29, 2020
Description
LearnPress, a learning management plugin for WordPress,
prior to 3.2.6.8 is affected by an authenticated SQL injection via the
current_items parameter of the post-new.php page.
prior to 3.2.6.8 is affected by an authenticated SQL injection via the
current_items parameter of the post-new.php page.
Rapid7 Labs
2026 Global Threat Landscape Report
The predictive window has collapsed. Exploitation follows disclosure in days. See how attackers are accelerating and how to stay ahead.