CVE-2024-1209 in LMS Plugininfo

Summary

by MITRE • 02/06/2024

The LearnDash LMS plugin for WordPress is vulnerable to Sensitive Information Exposure in all versions up to, and including, 4.10.1 via direct file access due to insufficient protection of uploaded assignments. This makes it possible for unauthenticated attackers to obtain those uploads.

VulDB is the best source for vulnerability data and more expert information about this specific topic.

Analysis

by VulDB Data Team • 04/12/2026

The vulnerability identified as CVE-2024-1209 affects the LearnDash LMS plugin for WordPress, representing a critical security flaw that exposes sensitive user data through improper file access controls. This issue impacts all versions up to and including 4.10.1, where uploaded assignments and related files are accessible without proper authentication mechanisms. The vulnerability stems from inadequate protection measures implemented within the plugin's file handling system, creating a direct pathway for unauthorized access to user-submitted content.

The technical implementation of this flaw involves insufficient access controls during file retrieval processes, allowing unauthenticated attackers to directly access uploaded assignment files through predictable URL patterns or direct file system access. This vulnerability falls under CWE-200, which specifically addresses improper exposure of sensitive information, and represents a clear violation of the principle of least privilege in information security. The attack vector is particularly concerning as it does not require any authentication credentials or sophisticated exploitation techniques, making it accessible to any attacker with knowledge of the file structure.

The operational impact of this vulnerability extends beyond simple data exposure, as it compromises the integrity and confidentiality of educational content submitted by users. Assignment files, which may contain personal information, academic work, or sensitive learning materials, become immediately accessible to unauthorized parties. This exposure creates significant risks for educational institutions using LearnDash, potentially leading to academic dishonesty, privacy violations, and compliance issues with data protection regulations such as GDPR or FERPA. The vulnerability essentially undermines the trust users place in the platform's security measures.

Mitigation strategies for CVE-2024-1209 should include immediate implementation of proper access controls and authentication checks for all uploaded files, ensuring that file retrieval processes require appropriate user authentication and authorization. Organizations should also implement file access logging and monitoring to detect unauthorized access attempts. The recommended approach aligns with ATT&CK technique T1566, which addresses credential harvesting through various attack vectors, and emphasizes the importance of proper file system permissions and access controls. Regular security audits of plugin installations and prompt application of security updates are essential defensive measures that should be implemented immediately upon patch availability.

Responsible

Wordfence

Reservation

02/02/2024

Disclosure

02/06/2024

Moderation

accepted

CPE

ready

EPSS

0.02419

KEV

no

Activities

very low

Sources

Interested in the pricing of exploits?

See the underground prices here!