Academy Lms – Elearning And Online Course Solution For Wordpress
Approved changes feed: RSS · Atom
cpe:2.3:a:academylms:academy_lms_–_elearning_and_online_course_solution_for_wordpress:*:*:*:*:*:*:*:*
part: a version: * update: *
| Vendor | Academylms (5d23b7d8-9988-5c35-910c-423d812edc45) |
|---|---|
| Product | Academy Lms – Elearning And Online Course Solution For Wordpress (3c29b820-79f7-50d2-8f22-f4209a8d8d48) |
| Edition | * |
| Language | * |
| Software edition | * |
| Target software | * |
| Target hardware | * |
| Other | * |
| Notes | Imported from gcve-enriched-dumps CVE data |
PURL mappings
| PURL | Source | Last updated |
|---|---|---|
| No PURL mappings for this CPE yet. | ||
Vulnerability references
| Identifier | cpeApplicability | Submitted | db.gcve.eu details | Rationale |
|---|---|---|---|---|
CVE:CVE-2024-1505 |
vulnerable | 2026-06-03 14:54:27.148204 |
Academy LMS – eLearning and online course solution for WordPress <= 1.9.19 - Authenticated (Subscriber+) Privilege Escalation
HIGH (8.8)
The Academy LMS – eLearning and online course solution for WordPress plugin for WordPress is vulnerable to privilege escalation in all versions up to, and including, 1.9.19. This is due to plugin allowing arbitrary user meta updates through the saved_user_info() function. This makes it possible for authenticated attackers, with minimal permissions such as students, to elevate their user role to that of an administrator.
Published: 2024-03-13T15:27:10.817Z
Updated: 2026-04-08T17:16:13.140Z |
Imported from gcve-enriched-dumps CVE data |
Contribute
You can submit an edit proposal for this CPE entry or suggest a related product/vendor addition using the action button above.