What the vulnerability does
01Description
SQL Injection vulnerability in LearnPress – WordPress LMS Plugin <= 4.1.7.3.2 versions.
CVE-2022-45808
CRITICAL
CVE-2022-45808: WordPress LearnPress Plugin <= 4.1.7.3.2 is vulnerable to SQL Injection
CVSS base score
9.9/10
CVSS vector
CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:C/C:H/I:L/A:L
Key dates
02Disclosure timeline
January 24, 2023
CVE published
April 28, 2026
Record updated
External resources
03References
Related vulnerabilities
04Related CVE
CVE-2024-3350 SourceCodester Aplaya Beach Resort Online Reservation System index.php sql injection
CVE-2026-40285 WeGIA has SQL Injection via Session Variable Override in DespachoControle.php
CVE-2024-12938 code-projects Simple Admin Panel updateOrderStatus.php sql injection
CVE-2025-0949 itsourcecode Tailoring Management System partview.php sql injection
CVE-2025-7590 PHPGurukul Dairy Farm Shop Management System edit-category.php sql injection
