CVE-2026-4365 — AI Deep Analysis Summary

🚨 **Essence**: LearnPress plugin (v4.3.2.8 & older) has a critical flaw in `delete_question_answer`. <br>⚠️ **Consequences**: Attackers can delete **any** quiz answer options without permission.…

🛡️ **Root Cause**: **Missing Authorization Check** (CWE-862). <br>🔍 **Flaw**: The function lacks proper capability verification. It trusts the request blindly, allowing unauthorized actions. 🚫

👥 **Affected**: WordPress Plugin **LearnPress**. <br>📦 **Version**: **4.3.2.8 and earlier**. <br>🏢 **Vendor**: ThimPress. If you use this LMS plugin, you are at risk! ⚠️

💀 **Attacker Power**: Delete **arbitrary** quiz answer options. <br>🔓 **Privileges**: **Unauthenticated** access required. No login needed! <br>📉 **Impact**: High Integrity & Availability loss. Courses become unusable. 📉

📉 **Threshold**: **LOW**. <br>🔑 **Auth**: **None** required (PR:N). <br>🌐 **Network**: Remote (AV:N). <br>🖱️ **UI**: None needed (UI:N). Easy to exploit! 🚀

📜 **Public Exp?**: **No specific PoC** listed in data. <br>🔍 **Status**: References exist (Wordfence, WP Trac), but no ready-to-use exploit code is provided here. Be cautious! 🕵️‍♂️

🔍 **Self-Check**: Scan for **LearnPress** plugin. <br>📊 **Version**: Check if version ≤ **4.3.2.8**. <br>🛠️ **Tool**: Use WP vulnerability scanners or check plugin admin panel.…

✅ **Fixed?**: Yes, implied by version cutoff. <br>🔄 **Action**: Update LearnPress to **latest version** immediately. <br>📦 **Vendor**: ThimPress released the fix. Don't wait! 🏃‍♂️

🚧 **No Patch?**: Disable the plugin temporarily. <br>🛡️ **Mitigation**: Restrict access to `/wp-admin/` via IP whitelist. <br>🔒 **Backup**: Secure database backups before any changes. Safety first! 🛡️

🔥 **Urgency**: **HIGH**. <br>⚡ **Priority**: **Critical**. <br>🚨 **Reason**: Unauthenticated, Remote, High Impact. Fix **NOW** to prevent course data destruction! 🚑