CyberRota
← Ana sayfaya dön

CVE-2026-13765

HIGH · CVSS 7.5

Kaynak: NVD + CISA KEV + EPSS · Yayınlanma: 2026-07-17T05:16:37.837 · Çekilme zamanı: 2026-07-17T06:08:09.132610+00:00

CyberRota Yorumu

Detaylı analiz gerekiyor.

CVE
CVE-2026-13765
Severity
HIGH
CVSS
7.5
EPSS
Yok
WordPress

Orijinal NVD Açıklaması

The LearnPress – WordPress LMS Plugin for Create and Sell Online Courses plugin for WordPress is vulnerable to Sensitive Information Exposure in all versions up to, and including, 4.4.1 via the check_answer. This makes it possible for unauthenticated attackers to extract the correct-answer markers, full option lists, explanations, and question content for any quiz question on the site — including questions belonging to paid courses the attacker is not enrolled in.