ThreatPress

WordPress Vulnerabilities Database

Back

WordPress WPLMS Learning Management System Theme <= 1.8.4.1 - Privilege Escalation

Product
WPLMS
Description
Because of this vulnerability, the attackers can have an administrator account on the target's website.
Solution
Update the theme.
Classification
Type BYPASS
OWASP Top 10 A2: Broken Authentication and Session Management
References
Packet Storm Security
CVE
Name CVE-N/A
Versions
Affected In <= 1.8.4.1
Fixed In 1.8.4.2
Disclosure date
2015-02-09
Submitter
ThreatPress