4:["$","div",null,{"className":"wrap","children":[["$","script",null,{"type":"application/ld+json","dangerouslySetInnerHTML":{"__html":"{\"@context\":\"https://schema.org\",\"@type\":\"CollectionPage\",\"name\":\"Vulnerabilities in vibethemes\",\"url\":\"https://vexday.io/en/vendor/vibethemes\",\"isPartOf\":{\"@type\":\"WebSite\",\"name\":\"Vexday\",\"url\":\"https://vexday.io\"},\"mainEntity\":{\"@type\":\"ItemList\",\"numberOfItems\":28},\"breadcrumb\":{\"@type\":\"BreadcrumbList\",\"itemListElement\":[{\"@type\":\"ListItem\",\"position\":1,\"name\":\"Home\",\"item\":\"https://vexday.io/en\"},{\"@type\":\"ListItem\",\"position\":2,\"name\":\"Technologies\",\"item\":\"https://vexday.io/en/vendors\"},{\"@type\":\"ListItem\",\"position\":3,\"name\":\"vibethemes\"}]}}"}}],["$","nav",null,{"className":"crumbs","children":[["$","$La",null,{"href":"/en","children":"Home"}]," ",["$","span",null,{"children":"/"}]," ",["$","$La",null,{"href":"/en/vendors","children":"Technologies"}]," ",["$","span",null,{"children":"/"}]," ",["$","b",null,{"children":"vibethemes"}]]}],["$","div",null,{"className":"sec-head","style":{"marginTop":18},"children":[["$","h1",null,{"style":{"fontSize":"1.7rem","margin":0,"fontFamily":"var(--font-display)","fontWeight":700},"children":["Vulnerabilities in"," ",["$","span",null,{"style":{"color":"var(--orange)"},"children":"vibethemes"}]]}],["$","span",null,{"className":"t","children":["28"," ","results"]}]]}],["$","div",null,{"className":"list","children":[["$","$La","CVE-2024-10470",{"className":"item","href":"/en/cve/CVE-2024-10470","children":[["$","span",null,{"className":"cid","children":"CVE-2024-10470"}],["$","span",null,{"className":"sevtag CRITICAL","children":"CRITICAL"}],["$","span",null,{"className":"tt2","children":"WPLMS Learning Management System for WordPress <= 4.962 - Unauthenticated Arbitrary File Read and Deletion"}],["$","span",null,{"className":"bd","children":[["$","span",null,{"className":"epss","children":["EPSS ",["$","b",null,{"children":"34.1%"}]]}],false]}]]}],["$","$La","CVE-2023-2704",{"className":"item","href":"/en/cve/CVE-2023-2704","children":[["$","span",null,{"className":"cid","children":"CVE-2023-2704"}],["$","span",null,{"className":"sevtag CRITICAL","children":"CRITICAL"}],["$","span",null,{"className":"tt2","children":"BP Social Connect <= 1.5 - Authentication Bypass"}],["$","span",null,{"className":"bd","children":[["$","span",null,{"className":"epss","children":["EPSS ",["$","b",null,{"children":"1.6%"}]]}],false]}]]}],["$","$La","CVE-2015-10139",{"className":"item","href":"/en/cve/CVE-2015-10139","children":[["$","span",null,{"className":"cid","children":"CVE-2015-10139"}],["$","span",null,{"className":"sevtag HIGH","children":"HIGH"}],["$","span",null,{"className":"tt2","children":"WPLMS Learning Management System for WordPress, WordPress LMS <= 1.8.4.1 - Privilege Escalation"}],["$","span",null,{"className":"bd","children":[["$","span",null,{"className":"epss","children":["EPSS ",["$","b",null,{"children":"1.0%"}]]}],false]}]]}],["$","$La","CVE-2024-56044",{"className":"item","href":"/en/cve/CVE-2024-56044","children":[["$","span",null,{"className":"cid","children":"CVE-2024-56044"}],["$","span",null,{"className":"sevtag CRITICAL","children":"CRITICAL"}],["$","span",null,{"className":"tt2","children":"WordPress WPLMS plugin <= 1.9.9 - Unauthenticated Arbitrary User Token Generation vulnerability"}],["$","span",null,{"className":"bd","children":[["$","span",null,{"className":"epss","children":["EPSS ",["$","b",null,{"children":"0.8%"}]]}],false]}]]}],["$","$La","CVE-2024-56040",{"className":"item","href":"/en/cve/CVE-2024-56040","children":[["$","span",null,{"className":"cid","children":"CVE-2024-56040"}],["$","span",null,{"className":"sevtag CRITICAL","children":"CRITICAL"}],["$","span",null,{"className":"tt2","children":"WordPress VibeBP plugin <= 1.9.9.4.1 - Unauthenticated Privilege Escalation vulnerability"}],["$","span",null,{"className":"bd","children":[["$","span",null,{"className":"epss","children":["EPSS ",["$","b",null,{"children":"0.7%"}]]}],false]}]]}],["$","$La","CVE-2024-56046",{"className":"item","href":"/en/cve/CVE-2024-56046","children":[["$","span",null,{"className":"cid","children":"CVE-2024-56046"}],["$","span",null,{"className":"sevtag CRITICAL","children":"CRITICAL"}],["$","span",null,{"className":"tt2","children":"WordPress WPLMS plugin <= 1.9.9 - Unauthenticated Arbitrary File Upload vulnerability"}],["$","span",null,{"className":"bd","children":[["$","span",null,{"className":"epss","children":["EPSS ",["$","b",null,{"children":"0.7%"}]]}],false]}]]}],["$","$La","CVE-2024-56052",{"className":"item","href":"/en/cve/CVE-2024-56052","children":[["$","span",null,{"className":"cid","children":"CVE-2024-56052"}],["$","span",null,{"className":"sevtag CRITICAL","children":"CRITICAL"}],["$","span",null,{"className":"tt2","children":"WordPress WPLMS plugin < 1.9.9.5.2 - Student+ Arbitrary File Upload vulnerability"}],["$","span",null,{"className":"bd","children":[["$","span",null,{"className":"epss","children":["EPSS ",["$","b",null,{"children":"0.7%"}]]}],false]}]]}],["$","$La","CVE-2024-56050",{"className":"item","href":"/en/cve/CVE-2024-56050","children":[["$","span",null,{"className":"cid","children":"CVE-2024-56050"}],["$","span",null,{"className":"sevtag CRITICAL","children":"CRITICAL"}],["$","span",null,{"className":"tt2","children":"WordPress WPLMS plugin < 1.9.9.5.3 - Subscriber+ Arbitrary File Upload vulnerability"}],["$","span",null,{"className":"bd","children":[["$","span",null,{"className":"epss","children":["EPSS ",["$","b",null,{"children":"0.7%"}]]}],false]}]]}],["$","$La","CVE-2024-56042",{"className":"item","href":"/en/cve/CVE-2024-56042","children":[["$","span",null,{"className":"cid","children":"CVE-2024-56042"}],["$","span",null,{"className":"sevtag CRITICAL","children":"CRITICAL"}],["$","span",null,{"className":"tt2","children":"WordPress WPLMS plugin < 1.9.9.5.3 - Unauthenticated SQL Injection vulnerability"}],["$","span",null,{"className":"bd","children":[["$","span",null,{"className":"epss","children":["EPSS ",["$","b",null,{"children":"0.7%"}]]}],false]}]]}],["$","$La","CVE-2024-56045",{"className":"item","href":"/en/cve/CVE-2024-56045","children":[["$","span",null,{"className":"cid","children":"CVE-2024-56045"}],["$","span",null,{"className":"sevtag CRITICAL","children":"CRITICAL"}],["$","span",null,{"className":"tt2","children":"WordPress WPLMS plugin < 1.9.9.5 - Unauthenticated Arbitrary Directory Deletion vulnerability"}],["$","span",null,{"className":"bd","children":[["$","span",null,{"className":"epss","children":["EPSS ",["$","b",null,{"children":"0.7%"}]]}],false]}]]}],["$","$La","CVE-2024-56043",{"className":"item","href":"/en/cve/CVE-2024-56043","children":[["$","span",null,{"className":"cid","children":"CVE-2024-56043"}],["$","span",null,{"className":"sevtag CRITICAL","children":"CRITICAL"}],["$","span",null,{"className":"tt2","children":"WordPress WPLMS plugin <= 1.9.9 - Unauthenticated Privilege Escalation vulnerability"}],["$","span",null,{"className":"bd","children":[["$","span",null,{"className":"epss","children":["EPSS ",["$","b",null,{"children":"0.6%"}]]}],false]}]]}],["$","$La","CVE-2024-56048",{"className":"item","href":"/en/cve/CVE-2024-56048","children":[["$","span",null,{"className":"cid","children":"CVE-2024-56048"}],["$","span",null,{"className":"sevtag HIGH","children":"HIGH"}],["$","span",null,{"className":"tt2","children":"WordPress WPLMS plugin <= 1.9.9 - Arbitrary Option Update to Privilege Escalation vulnerability"}],["$","span",null,{"className":"bd","children":[["$","span",null,{"className":"epss","children":["EPSS ",["$","b",null,{"children":"0.6%"}]]}],false]}]]}],["$","$La","CVE-2024-56047",{"className":"item","href":"/en/cve/CVE-2024-56047","children":[["$","span",null,{"className":"cid","children":"CVE-2024-56047"}],["$","span",null,{"className":"sevtag HIGH","children":"HIGH"}],["$","span",null,{"className":"tt2","children":"WordPress WPLMS plugin < 1.9.9.5.3 - Subscriber+ SQL Injection vulnerability"}],["$","span",null,{"className":"bd","children":[["$","span",null,{"className":"epss","children":["EPSS ",["$","b",null,{"children":"0.6%"}]]}],false]}]]}],["$","$La","CVE-2024-56039",{"className":"item","href":"/en/cve/CVE-2024-56039","children":[["$","span",null,{"className":"cid","children":"CVE-2024-56039"}],["$","span",null,{"className":"sevtag CRITICAL","children":"CRITICAL"}],["$","span",null,{"className":"tt2","children":"WordPress VibeBP plugin < 1.9.9.7.7 - Unauthenticated SQL Injection vulnerability"}],["$","span",null,{"className":"bd","children":[["$","span",null,{"className":"epss","children":["EPSS ",["$","b",null,{"children":"0.6%"}]]}],false]}]]}],["$","$La","CVE-2024-56054",{"className":"item","href":"/en/cve/CVE-2024-56054","children":[["$","span",null,{"className":"cid","children":"CVE-2024-56054"}],["$","span",null,{"className":"sevtag CRITICAL","children":"CRITICAL"}],["$","span",null,{"className":"tt2","children":"WordPress WPLMS plugin < 1.9.9.5.2 - Instructor+ Arbitrary File Upload vulnerability"}],["$","span",null,{"className":"bd","children":[["$","span",null,{"className":"epss","children":["EPSS ",["$","b",null,{"children":"0.6%"}]]}],false]}]]}],["$","$La","CVE-2024-56057",{"className":"item","href":"/en/cve/CVE-2024-56057","children":[["$","span",null,{"className":"cid","children":"CVE-2024-56057"}],["$","span",null,{"className":"sevtag CRITICAL","children":"CRITICAL"}],["$","span",null,{"className":"tt2","children":"WordPress WPLMS plugin < 1.9.9.5.2 - Arbitrary File Upload vulnerability"}],["$","span",null,{"className":"bd","children":[["$","span",null,{"className":"epss","children":["EPSS ",["$","b",null,{"children":"0.5%"}]]}],false]}]]}],["$","$La","CVE-2025-69097",{"className":"item","href":"/en/cve/CVE-2025-69097","children":[["$","span",null,{"className":"cid","children":"CVE-2025-69097"}],["$","span",null,{"className":"sevtag HIGH","children":"HIGH"}],["$","span",null,{"className":"tt2","children":"WordPress WPLMS plugin <= 1.9.9.5.4 - Arbitrary File Deletion vulnerability"}],["$","span",null,{"className":"bd","children":[["$","span",null,{"className":"epss","children":["EPSS ",["$","b",null,{"children":"0.5%"}]]}],false]}]]}],["$","$La","CVE-2024-56041",{"className":"item","href":"/en/cve/CVE-2024-56041","children":[["$","span",null,{"className":"cid","children":"CVE-2024-56041"}],["$","span",null,{"className":"sevtag HIGH","children":"HIGH"}],["$","span",null,{"className":"tt2","children":"WordPress VibeBP plugin < 1.9.9.5.1 - SQL Injection vulnerability"}],["$","span",null,{"className":"bd","children":[["$","span",null,{"className":"epss","children":["EPSS ",["$","b",null,{"children":"0.5%"}]]}],false]}]]}],["$","$La","CVE-2024-56055",{"className":"item","href":"/en/cve/CVE-2024-56055","children":[["$","span",null,{"className":"cid","children":"CVE-2024-56055"}],["$","span",null,{"className":"sevtag HIGH","children":"HIGH"}],["$","span",null,{"className":"tt2","children":"WordPress WPLMS plugin < 1.9.9.5.2 - Arbitrary Directory Deletion vulnerability"}],["$","span",null,{"className":"bd","children":[["$","span",null,{"className":"epss","children":["EPSS ",["$","b",null,{"children":"0.5%"}]]}],false]}]]}],["$","$La","CVE-2024-56051",{"className":"item","href":"/en/cve/CVE-2024-56051","children":[["$","span",null,{"className":"cid","children":"CVE-2024-56051"}],["$","span",null,{"className":"sevtag HIGH","children":"HIGH"}],["$","span",null,{"className":"tt2","children":"WordPress WPLMS plugin < 1.9.9.5 - Student+ Remote Code Execution (RCE) vulnerability"}],["$","span",null,{"className":"bd","children":[["$","span",null,{"className":"epss","children":["EPSS ",["$","b",null,{"children":"0.4%"}]]}],false]}]]}]]}],["$","div",null,{"className":"pagination","children":[["$","span",null,{"className":"off","children":"← previous"}],["$","span",null,{"className":"pgnum","children":["page"," ","1"," / ","2"]}],["$","$La",null,{"href":"?page=2","children":"next →"}]]}]]}]