CVE-2026-3225

Name of the Vulnerable Software and Affected Versions LearnPress – WordPress LMS Plugin versions through 4.3.2.8

Description The LearnPress – WordPress LMS Plugin is susceptible to unauthorized deletion of quiz question answers. This is due to a missing capability check within the delete question answer() function of the EditQuestionAjax class. The AbstractAjax::catch lp ajax() dispatcher verifies a wp rest nonce but does not perform a current user can() check. Additionally, the QuestionAnswerModel::delete() method only validates minimum answer counts without verifying user capabilities. This allows authenticated attackers with Subscriber-level access or higher to delete answer options from any quiz question on the site.

Recommendations Update LearnPress – WordPress LMS Plugin to a version later than 4.3.2.8.