Wpindeed

Ultimate Learning Pro

2 vulnerabilities found.

Hinweis: Diese Liste kann unvollständig sein. Daten werden ohne Gewähr im Ursprungsformat bereitgestellt.
4.9

CVE-2024-13846

  • EPSS 0.06%
  • Published 21.02.2025 12:15:30
  • Last modified 25.02.2025 03:27:13

The Indeed Ultimate Learning Pro plugin for WordPress is vulnerable to time-based SQL Injection via the ‘post_id’ parameter in all versions up to, and including, 3.9 due to insufficient escaping on the user supplied parameter and lack of sufficient p...

7.6

CVE-2025-22350

  • EPSS 0.09%
  • Published 07.01.2025 17:15:33
  • Last modified 07.01.2025 17:15:33

Improper Neutralization of Special Elements used in an SQL Command ('SQL Injection') vulnerability in WpIndeed Ultimate Learning Pro allows SQL Injection.This issue affects Ultimate Learning Pro: from n/a through 3.9.