PT-2026-54827 · Kodezen · Academy Lms – Wordpress Lms Plugin For Complete Elearning Solution

Md. Moniruzzaman Prodhan

+1

·

Publicado

2026-07-02

·

Atualizado

2026-07-02

·

CVE-2026-5348

CVSS v3.1

5.3

Média

VetorAV:N/AC:L/PR:N/UI:N/S:U/C:L/I:N/A:N
The Academy LMS – WordPress LMS Plugin for Complete eLearning Solution plugin for WordPress is vulnerable to Insecure Direct Object Reference in versions up to, and including, 3.8.1. This is due to the '/topics' REST API endpoint being registered with a permission callback set to ' return true', allowing unauthenticated access to course curriculum data without verifying the course's post status or user enrollment. This makes it possible for unauthenticated attackers to access detailed curriculum information for private, draft, scheduled, or password-protected courses by enumerating course IDs.

Correção

IDOR

Encontrou algum problema na descrição? Tem algo a acrescentar? Fique à vontade para nos escrever 👾

Enumeração de Fraquezas

Identificadores relacionados

CVE-2026-5348

Produtos afetados

Academy Lms – Wordpress Lms Plugin For Complete Elearning Solution