In a blog post yesterday, the security company Check Point Research detailed multiple vulnerabilities in three WordPress LMS (Learning Management System) plugins. According to Check Point, LearnPress, LearnDash and LifterLMS “are installed on more than 100,000 different educational platforms and include universities such as the University of Florida, University of Michigan, University of Washington as well as hundreds of online academies.” In total, Check Point found four unique vulnerabilities against the different platforms:
- LearnPress <= 3.2.6.7
- CVE-2020-6010: SQL Injection
- CVE-2020-11511: Privilege Escalation
- LearnDash < 3.1.6
- CVE-2020-6009: Unauthenticated Second-Order SQL Injection
- LifterLMS < 3.37.15
- CVE-2020-6008: Arbitrary File Write