Get a demo
100% Signal 0% Noise Invicti Logo - The Largest Dynamic Application Security Solutions Provider In The World Get a demo
WordPress Plugin LifterLMS-WP LMS for eLearning Online Courses Quizzes SQL Injection - CVE-2024-4743 - Vulnerability Database
WP Plugin Lifterlms

WordPress Plugin LifterLMS-WP LMS for eLearning Online Courses Quizzes SQL Injection - CVE-2024-4743

High
Reference: CVE-2024-4743
NVD Link: https://nvd.nist.gov/vuln/detail/CVE-2024-4743
Title: WordPress Plugin LifterLMS-WP LMS for eLearning Online Courses Quizzes SQL Injection
Overview:

WordPress Plugin LifterLMS-WP LMS for eLearning Online Courses Quizzes is prone to an SQL injection vulnerability because it fails to sufficiently sanitize user-supplied data before using it in an SQL query. Exploiting this issue could allow an attacker to compromise the application access or modify data or exploit latent vulnerabilities in the underlying database. WordPress Plugin LifterLMS-WP LMS for eLearning Online Courses Quizzes version 7.6.2 is vulnerable prior versions may also be affected.