Goal Reached Thanks to every supporter — we hit 100%!

Goal: 1000 CNY · Raised: 1000 CNY

100.0%
Buy Us a Coffee

chrisbadgett — Vulnerabilities & Security Advisories 9

Browse all 9 CVE security advisories affecting chrisbadgett. AI-powered Chinese analysis, POCs, and references for each vulnerability.

Chrisbadgett develops web applications primarily for educational platforms, with a core use case in learning management systems. Historically, vulnerabilities associated with this developer include remote code execution, cross-site scripting, and privilege escalation, often stemming from insufficient input validation and insecure direct object references. Notable security characteristics include multiple CVEs (9 total) with RCE being the most prevalent class. No major public security incidents have been documented, though the consistent pattern of vulnerabilities suggests a need for enhanced security practices in development lifecycles.

Top products by chrisbadgett: LifterLMS – WP LMS for eLearning, Online Courses, & Quizzes LifterLMS
CVE IDTitleCVSSSeverityPublished
CVE-2026-5207 LifterLMS <= 9.2.1 - Authenticated (Custom+) SQL Injection via 'order' Parameter — LifterLMS – WP LMS for eLearning, Online Courses, & QuizzesCWE-89 6.5 Medium2026-04-11
CVE-2025-11923 LifterLMS – WP LMS for eLearning, Online Courses, & Quizzes - Various Versions - Authenticated (Student+) Privilege Escalation — LifterLMS – WP LMS for eLearning, Online Courses, & QuizzesCWE-269 8.8 High2025-11-13
CVE-2025-52717 WordPress LifterLMS plugin <= 8.0.6 - SQL Injection Vulnerability — LifterLMSCWE-89 9.3 Critical2025-06-27
CVE-2025-2290 LifterLMS <= 8.0.1 - Missing Authorization to Unauthenticated Post Trashing — LifterLMS – WP LMS for eLearning, Online Courses, & QuizzesCWE-862 5.3 Medium2025-03-19
CVE-2024-12596 LifterLMS – WP LMS for eLearning, Online Courses, & Quizzes <= 7.8.5 - Missing Authorization to Authenticated (Subscriber+) Arbitrary Post Deletion — LifterLMS – WP LMS for eLearning, Online Courses, & QuizzesCWE-862 4.3 Medium2024-12-18
CVE-2024-7349 LifterLMS <= 7.7.5 - Authenticated (Admin+) SQL Injection — LifterLMS – WP LMS for eLearning, Online Courses, & QuizzesCWE-89 7.2 High2024-09-06
CVE-2024-4743 LifterLMS – WordPress LMS Plugin for eLearning <= 7.6.2 - Authenticated (Contributor+) SQL Injection via Shortcode — LifterLMS – WP LMS for eLearning, Online Courses, & QuizzesCWE-89 8.8 High2024-06-05
CVE-2024-0377 LifterLMS – WordPress LMS Plugin for eLearning <= 7.5.1 - Missing Authorization via process_review — LifterLMS – WP LMS for eLearning, Online Courses, & QuizzesCWE-284 5.3 Medium2024-03-13
CVE-2023-6160 LifterLMS <= 7.4.2 - Authenticated(Administrator+) Directory Traversal to Arbitrary CSV File Deletion — LifterLMS – WP LMS for eLearning, Online Courses, & QuizzesCWE-22 3.3 Low2023-11-22

This page lists every published CVE security advisory associated with chrisbadgett. Each entry links to a detailed page with CVSS scoring, CWE classification, affected products and references. AI-generated Chinese analysis is provided for fast triage.