Ctrl + K
/ news / CVE
CVEPublished 2024-05-14Modified 2026-04-080 articles on news6 live referencesNVD data

CVE-2024-4444Thimpress · Learnpress

Vulnerability data via NVD (ingested)

CVSS v3.1
5.3
MEDIUM
CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:L/I:N/A:N
EPSS percentile
76
Exploit Prediction Scoring System · top 24% of all CVEs
Weaknesses (CWE)
CWE-420Unprotected Alternate ChannelCWE-862Missing Authorization
Description

The LearnPress – WordPress LMS Plugin plugin for WordPress is vulnerable to bypass to user registration in versions up to, and including, 4.2.6.5. This is due to missing checks in the 'create_account' function in the checkout. This makes it possible for unauthenticated attackers to register as the default role on the site, even if registration is disabled.

Timeline
Published 2024-05-14
Modified 2026-04-08

External references

NVDMITREExploit-DBSploitustrickest/cveVulnCheck

Search for exposed instances

Shodan + Censys queries derived from NVD's CPE data. The vuln tag catches assets Shodan has explicitly linked to this CVE; the product / banner fingerprints find exposed instances even when the vuln tag was never applied (which is common).

Shodan · vuln tag0 hosts
vuln:CVE-2024-4444
Hosts Shodan has explicitly fingerprinted as vulnerable.
Shodan · WP plugin path
http.html:"/wp-content/plugins/learnpress/"
Matches any site loading the "learnpress" plugin — doesn't rely on Shodan's vuln tag.
Shodan · product
product:"Thimpress Learnpress"
All exposed Thimpress Learnpress instances — cross-reference with the CVE's affected-version range.
Shodan · banner/body mention
http.html:"Learnpress"
HTTP body or banner mentions "Learnpress" — catches deploys Shodan didn't identify as a product.
More intel sources (5)
Shodan report
vuln:CVE-2024-4444
Country / ASN / product breakdown for the vuln query.
Censys
vulnerabilities.cve_id: CVE-2024-4444
Censys host search filtered to this CVE id.
grep.app
CVE-2024-4444
Public source-code mentions — fast PoC discovery.
GitHub code
CVE-2024-4444
GitHub code search for direct mentions.
Google dork
"CVE-2024-4444" exploit -site:nvd.nist.gov
Write-ups and news, NVD excluded.

Known PoCs on GitHub (8)

CVE-2024-44448 repos
k8gege/LadonC#
Ladon大型内网渗透扫描器,PowerShell、Cobalt Strike插件、内存加载、无文件扫描。含端口扫描、服务识别、网络资产探测、密码审计、高危漏洞检测、漏洞利用、密码读取以及一键GetShell,支持批量A段/B段/C段以及跨网段扫描,支持URL、主机、域名列表扫描等。网络资产探测32种协议(ICMP\NBT\DNS\MAC\SMB\WMI\S…
★ 5,291·updated 1y ago
riramar/Web-Attack-Cheat-Sheetunknown
Web Attack Cheat Sheet
★ 4,422·updated 2w ago
BlessedRebuS/OSCP-Pentesting-Cheatsheetunknown
A general purpose cheat sheet for pentesting and OSCP certification
★ 294·updated 4mo ago
grisuno/LazyOwnPython
LazyOwn RedTeam/APT Framework is the first RedTeam Framework with an AI-powered C&C, featuring rootkits to conceal campaigns, undetectable malleable implants compatible with Window…
★ 199·updated 1d ago
netuseradministrator/Geoserver_gui_expGo
Geoserver综合利用工具
★ 122·updated 5mo ago
ucsb-seclab/chainreactorPDDL
ChainReactor is a research project that leverages AI planning to discover exploitation chains for privilege escalation on Unix systems. The project models the problem as a sequence…
★ 61·updated 1y ago
openbashok/promptzeroPython
Zero trace. Full answer. — Transparent Claude API proxy that anonymizes PII and sensitive data before it leaves your environment. From pentesters, to pentesters.
★ 55·updated 3w ago
Chocapikk/CVE-2024-56145Python
Unauthenticated RCE on CraftCMS when PHP `register_argc_argv` config setting is enabled
★ 47·updated 1y ago
We haven't classified any articles referencing CVE-2024-4444 yet. The external references above still apply.