Tag
critical
advisory
LearnPress WordPress Plugin Unauthorized Data Deletion Vulnerability (CVE-2026-4365)
2 rules 1 TTP 1 CVEThe LearnPress plugin for WordPress is vulnerable to unauthorized data deletion due to a missing capability check on the `delete_question_answer()` function, allowing unauthenticated attackers to delete quiz answer options.
wordpress
plugin
learnpress
data-deletion
unauthorized-access
2r
1t
1c
high
advisory
OpenEMR Missing Authorization Allows Unauthorized Data Deletion
2 rules 1 TTPOpenEMR versions before 8.0.0.3 contain a missing authorization vulnerability in the AJAX deletion endpoint that allows any authenticated user to delete patient data.
openemr
authorization-bypass
data-deletion
2r
1t