LifterLMS
chrisbadgett
Developer
9.2.2
Latest version
10,000
Installations
No date
Last updated
Vulnerability history
0 present
13 patched
6 Mitigation rules
- Authenticated (Student+) Privilege Escalation vulnerability9.1.013/11/2025
- SQL Injection Vulnerability<= 8.0.601/07/2025
- Reflected XSS vulnerability< 8.0.119/05/2025
- Missing Authorization to Unauthenticated Post Trashing vulnerability<= 8.0.118/03/2025
- Missing Authorization to Authenticated (Subscriber+) Arbitrary Post Deletion vulnerability<= 7.8.517/12/2024
- Authenticated (Admin+) SQL Injection vulnerability<= 7.7.506/09/2024
- Authenticated (Contributor+) SQL Injection via Shortcode vulnerability<= 7.6.205/06/2024
- Cross Site Request Forgery (CSRF) vulnerability<= 7.5.008/04/2024
- Missing Authorization via process_review vulnerability<= 7.5.128/02/2024
- Authenticated Stored Cross-Site Scripting (XSS) vulnerability<= 4.21.010/05/2021
- Reflected Cross-Site Scripting (XSS) vulnerability<= 4.21.010/05/2021
- Arbitrary File Writing vulnerability<= 3.37.1431/03/2020
- Unauthenticated Options Import vulnerability<= 3.34.509/09/2019