Experts Comments On Bugs In WordPress Plugins LearnPress, LearnDash, And LifterLMS For Online Courses Let Students Cheat

Researchers disclosed critical-severity flaws in three popular WordPress plugins used widely by colleges and universities. It was discovered that the flaws could be used to steal personal information (including names, emails, usernames, passwords), modify payment schemes, change grades, forge certificates or access tests in advance. These plugins LearnPress, LearnDash, and LifterLMS are together have been installed on more than 130,000 school websites as part of their learning management systems, including the University of Florida, University of Michigan and University of Washington.

According to the #CheckPoint, the three #WordPress plugins in question — #LearnPress, #LearnDash, and #LifterLMS — have #security flaws that could permit #unauthenticated users, to pilfer #personalinformation and even attain teacher privileges. #PII https://t.co/gMlV4yY0dj

— Taslet Security (@TasletCom) May 1, 2020

About the Author

ISBuzz Team

The opinions expressed in this post belongs to the individual contributors and do not necessarily reflect the views of Information Security Buzz.

The Battle for Identity Security: Key Insights from the ManageEngine Identity Security Survey 2024

Password Basics: Why Mastering Fundamentals Is Crucial in Today’s Complex Cybersecurity Landscape

Passkeys and Cybersecurity Awareness: A New Era of Business Security

Working With Us

Write For Us

The Pages

Experts Comments On Bugs In WordPress plugins LearnPress, LearnDash, And LifterLMS For Online Courses Let Students Cheat