Insecure Direct Object References in LearnDash LMS Plugin for WordPress
CVE-2023-3105

8.8HIGH

Key Information:

Vendor: Wordpress
Status: Learndash Lms
Vendor: CVE Published:; 12 July 2023

Summary

The LearnDash LMS plugin for WordPress has a vulnerability that allows attackers to exploit Insecure Direct Object References. Versions up to and including 4.6.0 permit user-controlled access to certain objects, allowing individuals with existing account access to bypass authorization measures. This flaw enables unauthorized users to change passwords and potentially gain control over administrator accounts, heightening security risks for platforms utilizing the plugin.

Affected Version(s)

LearnDash LMS * <= 4.6.0

References

https://www.wordfence.com/threat-intel/vulnerabilities/id...

https://www.learndash.com/release-notes/

CVSS V3.1

Score:

8.8

Severity:

HIGH

Confidentiality:

High

Integrity:

High

Availability:

High

Attack Vector:

Network

Attack Complexity:

Low

Privileges Required:

Low

User Interaction:

None

Scope:

Unchanged

Timeline

Vulnerability published
Jul 12, 2023
Vulnerability Reserved
Jun 5, 2023

Credit

Lana Codes