LifterLMS

Missing Authorization to Authenticated (Subscriber+) Arbitrary Post Deletion vulnerability <= 7.8.5

Authenticated (Admin+) SQL Injection vulnerability <= 7.7.5

Authenticated (Contributor+) SQL Injection via Shortcode vulnerability <= 7.6.2

Cross Site Request Forgery (CSRF) vulnerability <= 7.5.0

Missing Authorization via process_review vulnerability <= 7.5.1