VulnTitan VulnTitan Security command center
Plugin Vulnerability Hub
Plugin 16 known issues Latest disclosed Apr 10, 2026

LifterLMS – WP LMS for eLearning, Online Courses, & Quizzes Vulnerabilities

Review known vulnerability records for the WordPress plugin LifterLMS – WP LMS for eLearning, Online Courses, & Quizzes (`lifterlms`), including severity, CVE references, affected versions, and patch status.

Recent tracked CVEs on this page include CVE-2026-5207, CVE-2025-11923 and CVE-2025-52717, so operators can jump from disclosure to patch validation without scanning the full feed first.

View on WordPress.org Back to Feed
Known Records
16
High or Critical
7
Patch Coverage
100%
Last Updated
Apr 10, 2026
Coverage Snapshot

What this page helps you verify fast

This hub clusters every indexed record for LifterLMS – WP LMS for eLearning, Online Courses, & Quizzes so operators can confirm whether a disclosed issue maps to the installed slug, version range, and patch path.

Patch Visibility
16 records include a published patch path, leaving 0 with no listed safe release yet.
Severity Mix
2 critical and 5 high severity findings.
Recent CVEs
CVE-2026-5207, CVE-2025-11923 and CVE-2025-52717
Reference Workflow
Jump from the hub into the full report when you need remediation notes, exploit context, CVSS vectors, or source references.
Triage First

Open the records most likely to drive action

These recent records surface the CVE strings, patch cues, and direct report links most operators need first.

CVE-2025-52717 High Patch path listed

LifterLMS <= 8.0.6 - Unauthenticated SQL Injection

The LifterLMS plugin for WordPress is vulnerable to SQL Injection in versions up to, and including, 8.0.6 due to insufficient escaping on the user supplied parameter and lack of sufficient p...

Published
Jul 01, 2025
Patch Status
8.0.7
Open Full Report
Known Vulnerabilities

Reports for LifterLMS – WP LMS for eLearning, Online Courses, & Quizzes

Sorted by latest disclosure date so newly published issues surface first.

Plugin Medium Patched: Yes CVE-2026-5207
LifterLMS <= 9.2.1 - Authenticated (Custom+) SQL Injection via 'order' Parameter

The LifterLMS plugin for WordPress is vulnerable to SQL Injection via the 'order' parameter in all versions up to, and including, 9.2.1. This is due to insufficient escaping on the user supplied parameter and lack of sufficient preparation on the existing SQL query. This makes it...

Published
Apr 10, 2026
Patched Release
9.2.2
Affected Versions
Versions up to 9.2.1
Next Step
Update to 9.2.2 or newer if supported.
Open Full Report Open CVE Reference
Plugin High Patched: Yes CVE-2025-11923
LifterLMS – WP LMS for eLearning, Online Courses, & Quizzes - Various Versions - Authenticated (Student+) Privilege Escalation

The LifterLMS – WP LMS for eLearning, Online Courses, & Quizzes plugin for WordPress is vulnerable to privilege escalation. This is due to the plugin not properly validating a user's identity prior to allowing them to modify their own role via the REST API. The permission check i...

Published
Nov 12, 2025
Patched Release
3.41.2
Affected Versions
3.5.3 through 3.41.1
Next Step
Update to 3.41.2 or newer if supported.
Open Full Report Open CVE Reference
Plugin High Patched: Yes CVE-2025-52717
LifterLMS <= 8.0.6 - Unauthenticated SQL Injection

The LifterLMS plugin for WordPress is vulnerable to SQL Injection in versions up to, and including, 8.0.6 due to insufficient escaping on the user supplied parameter and lack of sufficient preparation on the existing SQL query. This makes it possible for unauthenticated attackers...

Published
Jul 01, 2025
Patched Release
8.0.7
Affected Versions
Versions up to 8.0.6
Next Step
Update to 8.0.7 or newer if supported.
Open Full Report Open CVE Reference
Plugin Medium Patched: Yes CVE-2025-2290
LifterLMS <= 8.0.1 - Missing Authorization to Unauthenticated Post Trashing

The LifterLMS – WP LMS for eLearning, Online Courses, & Quizzes plugin for WordPress is vulnerable to Unauthenticated Post Trashing due to a missing capability check on the delete_access_plan function and the related AJAX calls in all versions up to, and including, 8.0.1. This ma...

Published
Mar 18, 2025
Patched Release
8.0.2
Affected Versions
Versions up to 8.0.1
Next Step
Update to 8.0.2 or newer if supported.
Open Full Report Open CVE Reference
Plugin Medium Patched: Yes CVE-2024-13619
LifterLMS <= 8.0.0 - Reflected Cross-Site Scripting

The LifterLMS – WP LMS for eLearning, Online Courses, & Quizzes plugin for WordPress is vulnerable to Reflected Cross-Site Scripting in all versions up to, and including, 8.0.0 due to insufficient input sanitization and output escaping. This makes it possible for unauthenticated...

Published
Mar 03, 2025
Patched Release
8.0.1
Affected Versions
Versions up to 8.0.0
Next Step
Update to 8.0.1 or newer if supported.
Open Full Report Open CVE Reference
Plugin Medium Patched: Yes CVE-2024-12596
LifterLMS – WP LMS for eLearning, Online Courses, & Quizzes <= 7.8.5 - Missing Authorization to Authenticated (Subscriber+) Arbitrary Post Deletion

The LifterLMS – WP LMS for eLearning, Online Courses, & Quizzes plugin for WordPress is vulnerable to arbitrary post deletion due to a missing capability check on the 'llms_delete_cert' action in all versions up to, and including, 7.8.5. This makes it possible for authenticated a...

Published
Dec 17, 2024
Patched Release
7.8.6
Affected Versions
Versions up to 7.8.5
Next Step
Update to 7.8.6 or newer if supported.
Open Full Report Open CVE Reference
Plugin High Patched: Yes CVE-2024-7349
LifterLMS <= 7.7.5 - Authenticated (Admin+) SQL Injection

The LifterLMS – WP LMS for eLearning, Online Courses, & Quizzes plugin for WordPress is vulnerable to blind SQL Injection via the 'order' parameter in all versions up to, and including, 7.7.5 due to insufficient escaping on the user supplied parameter and lack of sufficient prepa...

Published
Sep 05, 2024
Patched Release
7.7.6
Affected Versions
Versions up to 7.7.5
Next Step
Update to 7.7.6 or newer if supported.
Open Full Report Open CVE Reference
Plugin High Patched: Yes CVE-2024-4743
LifterLMS – WordPress LMS Plugin for eLearning <= 7.6.2 - Authenticated (Contributor+) SQL Injection via Shortcode

The LifterLMS – WordPress LMS Plugin for eLearning plugin for WordPress is vulnerable to SQL Injection via the orderBy attribute of the lifterlms_favorites shortcode in all versions up to, and including, 7.6.2 due to insufficient escaping on the user supplied parameter and lack o...

Published
Jun 04, 2024
Patched Release
7.6.3
Affected Versions
Versions up to 7.6.2
Next Step
Update to 7.6.3 or newer if supported.
Open Full Report Open CVE Reference
Plugin Medium Patched: Yes CVE-2024-31363
LifterLMS <= 7.5.0 - Cross-Site Request Forgery

The LifterLMS plugin for WordPress is vulnerable to Cross-Site Request Forgery in versions up to, and including, 7.5.0. This is due to missing or incorrect nonce validation on the llms-clone-post action. This makes it possible for unauthenticated attackers to clone posts via a fo...

Published
Apr 08, 2024
Patched Release
7.5.1
Affected Versions
Versions up to 7.5.0
Next Step
Update to 7.5.1 or newer if supported.
Open Full Report Open CVE Reference
Plugin Medium Patched: Yes CVE-2024-0377
LifterLMS – WordPress LMS Plugin for eLearning <= 7.5.1 - Missing Authorization via process_review

The LifterLMS – WordPress LMS Plugin for eLearning plugin for WordPress is vulnerable to unauthorized modification of data due to a missing capability check on the 'process_review' function in all versions up to, and including, 7.5.1. This makes it possible for unauthenticated at...

Published
Feb 27, 2024
Patched Release
7.5.2
Affected Versions
Versions up to 7.5.1
Next Step
Update to 7.5.2 or newer if supported.
Open Full Report Open CVE Reference
Plugin Low Patched: Yes CVE-2023-6160
LifterLMS <= 7.4.2 - Authenticated(Administrator+) Directory Traversal to Arbitrary CSV File Deletion

The LifterLMS – WordPress LMS Plugin for eLearning plugin for WordPress is vulnerable to Directory Traversal in versions up to, and including, 7.4.2 via the maybe_serve_export function. This makes it possible for authenticated attackers, with administrator or LMS manager access a...

Published
Nov 05, 2023
Patched Release
7.5.0
Affected Versions
Versions up to 7.4.2
Next Step
Update to 7.5.0 or newer if supported.
Open Full Report Open CVE Reference
Plugin High Patched: Yes CVE-2021-24562
LMS by LifterLMS – Online Course, Membership & Learning Management System Plugin for WordPress < 4.21.2 - Insecure Direct Object Reference

The LMS by LifterLMS – Online Course, Membership & Learning Management System Plugin for WordPress plugin before 4.21.2 was affected by an IDOR issue, allowing students to see other student answers and grades

Published
May 17, 2021
Patched Release
4.21.2
Affected Versions
Versions before 4.21.2
Next Step
Update to 4.21.2 or newer if supported.
Open Full Report Open CVE Reference