Vulnerabilities > Learndash > Learndash > 6.7.1

DATE CVE VULNERABILITY TITLE RISK
2025-02-12 CVE-2024-56938 Cross-site Scripting vulnerability in Learndash 6.7.1
LearnDash v6.7.1 was discovered to contain a stored cross-site scripting (XSS) vulnerability in the materials-content class.
network
low complexity
learndash CWE-79
5.4
5.4
2025-02-12 CVE-2024-56939 Cross-site Scripting vulnerability in Learndash 6.7.1
LearnDash v6.7.1 was discovered to contain a stored cross-site scripting (XSS) vulnerability in the ld-comment-body class.
network
low complexity
learndash CWE-79
5.4
5.4
2025-02-12 CVE-2024-56940 Unspecified vulnerability in Learndash 6.7.1
An issue in the profile image upload function of LearnDash v6.7.1 allows attackers to cause a Denial of Service (DoS) via excessive file uploads.
network
low complexity
learndash
7.5
7.5