Wplms
This hub aggregates every CVE we track for Wplms, a product in the web cms plugins space. Use it to gauge the current risk picture and drill into individual advisories.
22
CVEs tracked
10
Critical
10
High
0
In CISA KEV
Severity distribution
HIGH10CRITICAL10MEDIUM2
Monthly trend
0
0
0
0
1
15
0
0
0
0
0
0
0
0
1
2
0
1
1
0
0
0
0
0
2024-072026-06
Latest CVEs
The 15 most recently published vulnerabilities affecting Wplms.
- CVE-2025-69097WordPress WPLMS plugin <= 1.9.9.5.4 - Arbitrary File Deletion vulnerability8.6
- CVE-2025-63035WordPress WPLMS plugin <= 1.9.9.5.4 - Cross Site Scripting (XSS) vulnerability6.5
- CVE-2025-53420WordPress WPLMS plugin <= 1.9.9.8 - Cross Site Scripting (XSS) vulnerability7.1
- CVE-2025-49925WordPress WPLMS plugin <= 1.9.9.7 - Broken Access Control vulnerability7.5
- CVE-2025-58668WordPress WPLMS theme <= 4.970 - Broken Access Control vulnerability4.3
- CVE-2024-56045WordPress WPLMS plugin < 1.9.9.5 - Unauthenticated Arbitrary Directory Deletion vulnerability9.3
- CVE-2024-56044WordPress WPLMS plugin <= 1.9.9 - Unauthenticated Arbitrary User Token Generation vulnerability9.8
- CVE-2024-56043WordPress WPLMS plugin <= 1.9.9 - Unauthenticated Privilege Escalation vulnerability9.8
- CVE-2024-56042WordPress WPLMS plugin < 1.9.9.5.3 - Unauthenticated SQL Injection vulnerability9.3
- CVE-2024-56046WordPress WPLMS plugin <= 1.9.9 - Unauthenticated Arbitrary File Upload vulnerability10.0
- CVE-2024-56047WordPress WPLMS plugin < 1.9.9.5.3 - Subscriber+ SQL Injection vulnerability8.5
- CVE-2024-56053WordPress WPLMS plugin < 1.9.9.5.3 - Instructor+ SQL Injection vulnerability7.6
- CVE-2024-56048WordPress WPLMS plugin <= 1.9.9 - Arbitrary Option Update to Privilege Escalation vulnerability8.8
- CVE-2024-56050WordPress WPLMS plugin < 1.9.9.5.3 - Subscriber+ Arbitrary File Upload vulnerability9.9
- CVE-2024-56052WordPress WPLMS plugin < 1.9.9.5.2 - Student+ Arbitrary File Upload vulnerability9.9
Product normalization is registry-driven with AI assist and human review. How it works