LearnDash Denial-of-Service Vulnerability in Profile Image Upload Function

Vulnerability

A denial-of-service vulnerability has been identified in LearnDash version 6.7.1, specifically within the profile image upload feature. This issue allows attackers to disrupt service by uploading excessive files, causing a strain on server resources.

Impact

Exploitation of this vulnerability leads to a denial-of-service condition, causing the application to become unresponsive or slow due to the excessive file uploads.

Added: Jun 9, 2025, 7:46 PM

Updated: Jun 9, 2025, 7:46 PM

Vulnerability Rating

Custom Algorithm

spread

3.4

impact

2.5

exploitability

7.6

remediation

0.0

relevance

0.0

threat

0.0

urgency

2.9

incentive

5.8

Our algorithm analyzes dozens of metrics to generate these 8 key vulnerability categories, which are then combined to calculate the overall risk score.

Vulnerability Rating

Custom Algorithm

spread

3.4

impact

2.5

exploitability

7.6

remediation

0.0

relevance

0.0

threat

0.0

urgency

2.9

incentive

5.8

Our algorithm analyzes dozens of metrics to generate these 8 key vulnerability categories, which are then combined to calculate the overall risk score.

LearnDash Denial-of-Service Vulnerability in Profile Image Upload Function

Vulnerability

Impact

Affected Products

LearnDash

CVSS Scores

References

Vulnerability Rating

Vulnerability Rating