Vibethemes: >> Wordpress Learning Management System Security Vulnerabilities
The WPLMS theme for WordPress is vulnerable to Privilege Escalation in versions 1.5.2 to 1.8.4.1 via the 'wp_ajax_import_data' AJAX action. This makes it possible for authenticated attackers to change otherwise restricted settings and potentially create a new accessible admin account.
CVSS Score
8.8
EPSS Score
0.443
Published
2025-07-19