CVE-2026-48865 – WordPress LearnPress plugin

CVE ID :CVE-2026-48865

Published : June 1, 2026, 3:16 p.m. | 1 hour, 16 minutes ago

Description :Improper Neutralization of Input During Web Page Generation (‘Cross-site Scripting’) vulnerability in ThimPress LearnPress allows Reflected XSS.

This issue affects LearnPress: from n/a through 4.3.6.

Severity: 7.1 | HIGH

Visit the link for more details, such as CVSS details, affected products, timeline, and more… 

نوشته های مشابه

CVE-2026-8643 – pip can extract console_scripts and gui_scripts outside installation directory

CVE-2026-8501 – CVE-2026-8501

CVE-2026-46243 – smb: client: reject userspace cifs.spnego descriptions

CVE-2026-45701 – Sulu: Weak Cryptographical usage for API Key generation and Reset Tokens