Monitor vulnerabilities like this one.
Sign up free to get alerted when software you use is affected.
6.5
LifterLMS plugin for WordPress allows attackers to access sensitive data
CVE-2026-5207
Summary
The LifterLMS plugin for WordPress has a security flaw that allows attackers with certain permissions to view sensitive information from the plugin's database. This is a serious issue because it could allow unauthorized access to confidential data. If you're using the LifterLMS plugin, update to a newer version to fix the problem.
Original title
The LifterLMS plugin for WordPress is vulnerable to SQL Injection via the 'order' parameter in all versions up to, and including, 9.2.1. This is due to insufficient escaping on the user supplied pa...
Original description
The LifterLMS plugin for WordPress is vulnerable to SQL Injection via the 'order' parameter in all versions up to, and including, 9.2.1. This is due to insufficient escaping on the user supplied parameter and lack of sufficient preparation on the existing SQL query. This makes it possible for authenticated attackers, with Instructor-level access and above who have the edit_post capability on the quiz, to append additional SQL queries into already existing queries that can be used to extract sensitive information from the database.
nvd CVSS3.1
6.5
Vulnerability type
CWE-89
SQL Injection
- https://plugins.trac.wordpress.org/browser/lifterlms/trunk/includes/admin/report...
- https://plugins.trac.wordpress.org/browser/lifterlms/trunk/includes/admin/report...
- https://plugins.trac.wordpress.org/browser/lifterlms/trunk/includes/class.llms.a...
- https://plugins.trac.wordpress.org/changeset/3495818/lifterlms/trunk/includes/ad...
- https://www.wordfence.com/threat-intel/vulnerabilities/id/43d31d1e-0f4f-4f51-827...
Published: 11 Apr 2026 · Updated: 11 Apr 2026 · First seen: 11 Apr 2026