Omri Herscovici

**Name of the Vulnerable Software and Affected Versions** LearnPress Wordpress plugin versions prior to and including 3.2.6.7 **Description** The issue is related to SQL Injection. There is no information provided about the estimated number of potentially affected devices worldwide or real-world incidents where this issue was exploited. **Recommendations** For versions prior to and including 3.2.6.7, update to a version later than 3.2.6.7 to resolve the issue.

**Name of the Vulnerable Software and Affected Versions** Microsoft Word (affected versions not specified) Microsoft Office (affected versions not specified) **Description** A remote code execution issue exists in Microsoft Word when a user opens a specially crafted PDF file. This could allow an attacker to execute arbitrary code in the context of the current user. The vulnerability is related to errors in processing input data. **Recommendations** For Microsoft Word, consider avoiding the use of PDF files from untrusted sources until a fix is available. For Microsoft Office, restrict the opening of specially crafted PDF files to minimize the risk of exploitation. At the moment, there is no information about a newer version that contains a fix for this vulnerability.