Code Injection Vulnerability in WPLMS by VibeThemes

CVE-2024-56051

What is CVE-2024-56051?

A code injection vulnerability exists in the WPLMS plugin developed by VibeThemes, enabling attackers to generate malicious code that could compromise site integrity. This flaw impacts versions of WPLMS prior to 1.9.9.5 and may allow remote execution of code by unauthorized users, potentially leading to severe security breaches. It is crucial for users to upgrade to the latest version to mitigate these risks.

References