Vulnerabilities > Learndash > Learndash > 3.4.0.3

DATE CVE VULNERABILITY TITLE RISK
2024-02-05 CVE-2024-1208 Unspecified vulnerability in Learndash
The LearnDash LMS plugin for WordPress is vulnerable to Sensitive Information Exposure in all versions up to, and including, 4.10.2 via API.
network
low complexity
learndash
5.3
5.3
2024-02-05 CVE-2024-1209 Unspecified vulnerability in Learndash
The LearnDash LMS plugin for WordPress is vulnerable to Sensitive Information Exposure in all versions up to, and including, 4.10.1 via direct file access due to insufficient protection of uploaded assignments.
network
low complexity
learndash
5.3
5.3
2024-02-05 CVE-2024-1210 Unspecified vulnerability in Learndash
The LearnDash LMS plugin for WordPress is vulnerable to Sensitive Information Exposure in all versions up to, and including, 4.10.1 via API.
network
low complexity
learndash
5.3
5.3
2023-10-31 CVE-2023-28777 Unspecified vulnerability in Learndash
Improper Neutralization of Special Elements used in an SQL Command ('SQL Injection') vulnerability in LearnDash LearnDash LMS allows SQL Injection.This issue affects LearnDash LMS: from n/a through 4.5.3.
network
low complexity
learndash
8.8
8.8