Security News > 2023 > January > 75k WordPress sites impacted by critical online course plugin flaws

75k WordPress sites impacted by critical online course plugin flaws
2023-01-24 17:16

The WordPress online course plugin 'LearnPress' was vulnerable to multiple critical-severity flaws, including pre-auth SQL injection and local file inclusion.

LearnPress is a learning management system plugin that allows WordPress websites to easily create and sell online courses, lessons, and quizzes, providing visitors with a friendly interface while requiring no coding knowledge from the website developer.

The first vulnerability discovered by PatchStack is CVE-2022-47615, an unauthenticated local file inclusion flaw that allows attackers to display the contents of local files stored on the web server.

The second critical flaw is CVE-2022-45808, an unauthenticated SQL injection potentially leading to sensitive information disclosure, data modification, and arbitrary code execution.

The third flaw impacting older LearnPress versions is CVE-2022-45820, an authenticated SQL injection flaw in two shortcodes of the plugin failing to properly validate and sanitize the input of the "$args" variable.

Website owners relying on LearnPress are advised to either upgrade to version 4.2.0 or disable the plugin until they can apply the available security update.


News URL

https://www.bleepingcomputer.com/news/security/75k-wordpress-sites-impacted-by-critical-online-course-plugin-flaws/

Related Vulnerability

DATE CVE VULNERABILITY TITLE RISK
2023-01-26 CVE-2022-47615 Unrestricted Upload of File with Dangerous Type vulnerability in Thimpress Learnpress
Local File Inclusion vulnerability in LearnPress – WordPress LMS Plugin <= 4.1.7.3.2 versions.
network
low complexity
thimpress CWE-434
critical
9.8
2023-01-26 CVE-2022-45820 Unspecified vulnerability in Thimpress Learnpress
SQL Injection (SQLi) vulnerability in LearnPress – WordPress LMS Plugin <= 4.1.7.3.2 versions.
network
low complexity
thimpress
8.8
2023-01-26 CVE-2022-45808 Unspecified vulnerability in Thimpress Learnpress
SQL Injection vulnerability in LearnPress – WordPress LMS Plugin <= 4.1.7.3.2 versions.
network
low complexity
thimpress
critical
9.8

Related vendor

VENDOR LAST 12M #/PRODUCTS LOW MEDIUM HIGH CRITICAL TOTAL VULNS
Wordpress 7 2 93 44 18 157
Plugin 2 0 13 1 0 14