CVE-2025-11372 | thimpress LearnPress Plugin up to 4.2.9.3 on WordPress Admin Tools REST Endpoint create-indexs authorization

A vulnerability was found in thimpress LearnPress Plugin up to 4.2.9.3 on WordPress. It has been declared as critical. The affected element is an unknown function of the file /wp-json/lp/v1/admin/tools/create-indexs of the component Admin Tools REST Endpoint. The manipulation results in missing authorization.

This vulnerability is known as CVE-2025-11372. It is possible to launch the attack remotely. No exploit is available.VulDB Recent EntriesRead More