The LearnPress – WordPress LMS Plugin for Create and Sell Online Courses plugin for WordPress is vulnerable to Sensitive Information Exposure in all versions up to, and including, 4.4.1 via the check_answer. This makes it possible for unauthenticated attackers to extract the correct-answer markers, full option lists, explanations, and question content for any quiz question on the site — including questions belonging to paid courses the attacker is not enrolled in.
Metrics
Affected Vendors & Products
References
History
Fri, 17 Jul 2026 07:30:00 +0000
| Type | Values Removed | Values Added |
|---|---|---|
| First Time appeared |
Thimpress
Thimpress learnpress – Wordpress Lms Plugin For Create And Sell Online Courses Wordpress Wordpress wordpress |
|
| Vendors & Products |
Thimpress
Thimpress learnpress – Wordpress Lms Plugin For Create And Sell Online Courses Wordpress Wordpress wordpress |
Fri, 17 Jul 2026 05:00:00 +0000
Status: PUBLISHED
Assigner: Wordfence
Published:
Updated: 2026-07-17T03:43:42.953Z
Reserved: 2026-06-29T19:46:50.351Z
Link: CVE-2026-13765
No data.
No data.
No data.
OpenCVE Enrichment
Updated: 2026-07-17T07:15:11Z