CVE-2024-4444: CWE-420 Unprotected Alternate Channel in thimpress LearnPress – WordPress LMS Plugin for Create and Sell Online Courses
The LearnPress – WordPress LMS Plugin plugin for WordPress is vulnerable to bypass to user registration in versions up to, and including, 4.2.6.5. This is due to missing checks in the 'create_account' function in the checkout. This makes it possible for unauthenticated attackers to register as the default role on the site, even if registration is disabled.
AI Analysis
Technical Summary
The LearnPress – WordPress LMS Plugin for Create and Sell Online Courses contains an unprotected alternate channel vulnerability (CWE-420) in its 'create_account' function within the checkout process. This flaw allows unauthenticated users to register accounts with the default role despite registration being disabled on the site. The vulnerability affects all versions up to 4.2.6.5. The CVSS 3.1 base score is 5.3, reflecting a network attack vector with low complexity and no privileges or user interaction required, resulting in limited confidentiality impact but no integrity or availability impact.
Potential Impact
An attacker can create user accounts on a vulnerable LearnPress installation without authentication and even when registration is disabled. This could allow unauthorized access to site features available to the default user role, potentially leading to unauthorized actions or information disclosure limited to that role's permissions. There is no direct impact on data integrity or availability reported.
Mitigation Recommendations
Patch status is not yet confirmed — check the vendor advisory for current remediation guidance. Until an official fix is released, administrators should consider disabling or restricting access to the checkout process or user registration workflows in LearnPress, or apply custom code to enforce registration checks. Monitor vendor channels for updates and apply official patches promptly once available.
CVE-2024-4444: CWE-420 Unprotected Alternate Channel in thimpress LearnPress – WordPress LMS Plugin for Create and Sell Online Courses
Description
The LearnPress – WordPress LMS Plugin plugin for WordPress is vulnerable to bypass to user registration in versions up to, and including, 4.2.6.5. This is due to missing checks in the 'create_account' function in the checkout. This makes it possible for unauthenticated attackers to register as the default role on the site, even if registration is disabled.
AI-Powered Analysis
Machine-generated threat intelligence
Technical Analysis
The LearnPress – WordPress LMS Plugin for Create and Sell Online Courses contains an unprotected alternate channel vulnerability (CWE-420) in its 'create_account' function within the checkout process. This flaw allows unauthenticated users to register accounts with the default role despite registration being disabled on the site. The vulnerability affects all versions up to 4.2.6.5. The CVSS 3.1 base score is 5.3, reflecting a network attack vector with low complexity and no privileges or user interaction required, resulting in limited confidentiality impact but no integrity or availability impact.
Potential Impact
An attacker can create user accounts on a vulnerable LearnPress installation without authentication and even when registration is disabled. This could allow unauthorized access to site features available to the default user role, potentially leading to unauthorized actions or information disclosure limited to that role's permissions. There is no direct impact on data integrity or availability reported.
Mitigation Recommendations
Patch status is not yet confirmed — check the vendor advisory for current remediation guidance. Until an official fix is released, administrators should consider disabling or restricting access to the checkout process or user registration workflows in LearnPress, or apply custom code to enforce registration checks. Monitor vendor channels for updates and apply official patches promptly once available.
Technical Details
- Data Version
- 5.1
- Assigner Short Name
- Wordfence
- Date Reserved
- 2024-05-02T18:56:00.932Z
- Cvss Version
- 3.1
- State
- PUBLISHED
Threat ID: 699f6b8eb7ef31ef0b556954
Added to database: 2/25/2026, 9:37:18 PM
Last enriched: 4/9/2026, 7:44:53 AM
Last updated: 4/12/2026, 8:36:34 AM
Views: 13
Community Reviews
0 reviewsCrowdsource mitigation strategies, share intel context, and vote on the most helpful responses. Sign in to add your voice and help keep defenders ahead.
Want to contribute mitigation steps or threat intel context? Sign in or create an account to join the community discussion.
Actions
Updates to AI analysis require Pro Console access. Upgrade inside Console → Billing.
Need more coverage?
Upgrade to Pro Console for AI refresh and higher limits.
For incident response and remediation, OffSeq services can help resolve threats faster.
Latest Threats
Check if your credentials are on the dark web
Instant breach scanning across billions of leaked records. Free tier available.