WordPress Plugin Vulnerabilities

LearnPress < 4.3.7 - Unauthenticated Sensitive User Information Disclosure via REST API

Description

The plugin does not gate the `edit` context on one of its REST endpoint behind the `edit_users` capability, allowing unauthenticated visitors to retrieve each returned user's roles, full capabilities map, extra capabilities, locale, and registration date via a crafted request

Proof of Concept

Affects Plugins

Plugin icon
learnpress
Fixed in 4.3.7

References

CVE
CVE-2026-8383

Classification

Type
NO AUTHORISATION
OWASP top 10
A5: Broken Access Control
CWE
CWE-862
CVSS
5.3 (medium)

Miscellaneous

Original Researcher
dyingman1
Submitter
dyingman
Verified
Yes
WPVDB ID
b7cbf68b-62c5-4787-b84b-69df9e0122b2

Timeline

Publicly Published
2026-05-27 (about 21 days ago)
Added
2026-05-27 (about 20 days ago)
Last Updated
2026-05-27 (about 20 days ago)

Other

Published
Title
Published
2025-01-07
Title
1003 Mortgage Application <= 1.87 - Missing Authorization
Published
2024-06-27
Title
Easy Affiliate Links < 3.7.4 - Missing Authorization to Authenticated (Subscriber+) Settings Reset
Published
2025-01-24
Title
Youzify – BuddyPress Community, User Profile, Social Network & Membership Plugin for WordPress By KaineLabs < 1.3.3 - Missing Authorization to Authenticated (Subscriber+) Arbitrary Review Deletion
Published
2025-03-13
Title
WP Ghost < 5.4.02 - Unauthenticated Limited File Read
Published
2023-12-27
Title
Awesome Support < 6.1.6 - Missing Authorization via wpas_load_reply_history