LearnPress < 4.2.5.8 – Unauthenticated Command Injection | CVE 2023-6634 | Plugin Vulnerabilities

Description

The LearnPress plugin for WordPress is vulnerable to Command Injection in all versions up to, and including, 4.2.5.7 via the get_content function. This is due to the plugin making use of the call_user_func function with user input. This makes it possible for unauthenticated attackers to execute any public function with one parameter, which could result in remote code execution.

Affects Plugins

Fixed in 4.2.5.8

References

CVE

URL

https://www.wordfence.com/threat-intel/vulnerabilities/id/21291ed7-cdc0-4698-9ec4-8417160845ed

Classification

Type

RCE

OWASP top 10

CWE

CVSS

Miscellaneous

Original Researcher

hir0ot

Verified

No

WPVDB ID

909580f4-1306-4e61-ac7d-e7a2eb0961f8

Timeline

Publicly Published

2024-01-03 (about 2 years ago)

Added

2024-01-04 (about 2 years ago)

Last Updated

2024-01-04 (about 2 years ago)

Other

Published

Title

Published

2024-12-05

Title

ARMember – Membership Plugin, Content Restriction, Member Levels, User Profile & User signup < 4.0.52 - Authenticated (Subscriber+) Arbitrary Shortcode Execution

Published

2025-09-05

Title

Job Board Manager <= 2.1.61 - Authenticated (Job Poster+) Arbitrary Shortcode Execution

Published

2015-09-30

Title

WordPress Landing Pages 1.8.8-1.9.0 - Unauthenticated Remote Command Execution

Published

2025-10-24

Title

Discussion Board – WordPress Forum Plugin < 2.5.6 - Authenticated (Subscriber+) Arbitrary Shortcode Execution

Published

2025-07-10

Title

GB Forms DB < 1.0.3 - Unauthenticated Remote Code Execution