Volerion logoVolerion
Volerion logoVolerion

ThimPress LearnPress Missing Authorization Vulnerability Allowing Access Control Misconfiguration

Vulnerability

A missing authorization vulnerability has been identified in the ThimPress LearnPress WordPress plugin, specifically in versions through 4.2.9.4. This vulnerability arises from incorrectly configured access control security levels, allowing unauthorized exploitation.

Impact

Exploitation of this vulnerability could lead to unauthorized access or actions being performed, bypassing intended access controls.

Added: Dec 18, 2025, 8:25 AM
Updated: Dec 18, 2025, 3:30 PM

Vulnerability Rating

Custom Algorithm
spread
6.4
impact
5.0
exploitability
7.6
remediation
0.0
relevance
1.4
threat
0.0
urgency
2.9
incentive
5.8

Our algorithm analyzes dozens of metrics to generate these 8 key vulnerability categories, which are then combined to calculate the overall risk score.