CVE-2019-15896

CRITICAL

LifterLMS <3.34.5 - Privilege Escalation

Title source: llm
STIX 2.1

Exploitation Summary

EIP tracks 1 public exploit for CVE-2019-15896. PoCs published by RandomRobbieBF.

AI-analyzed exploit summary This repository contains a functional Python exploit for CVE-2019-15896, which targets an unauthenticated options import vulnerability in LifterLMS <= 3.34.5. The exploit automates the creation of an administrator account by importing malicious options and triggering a password reset email.

Description

An issue was discovered in the LifterLMS plugin through 3.34.5 for WordPress. The upload_import function in the class.llms.admin.import.php script is prone to an unauthenticated options import vulnerability that could lead to privilege escalation (administrator account creation), website redirection, and stored XSS.

Exploits (1)

nomisec WORKING POC
by RandomRobbieBF · poc
https://github.com/RandomRobbieBF/CVE-2019-15896

This repository contains a functional Python exploit for CVE-2019-15896, which targets an unauthenticated options import vulnerability in LifterLMS <= 3.34.5. The exploit automates the creation of an administrator account by importing malicious options and triggering a password reset email.

Classification
Working Poc 95%
Attack Type
Auth Bypass
Complexity
Moderate
Reliability
Reliable
Target: LifterLMS <= 3.34.5
No auth needed
Prerequisites: Access to wp-login.php · Valid email address · Target site must be able to send emails
devstral-2 · analyzed Feb 18, 2026 Full analysis →

References (3)

Core 3
Core References
Third Party Advisory x_refsource_misc
https://wpvulndb.com/vulnerabilities/9871

Scores

CVSS v3 9.8
EPSS 0.0745
EPSS Percentile 93.7%
Attack Vector NETWORK
CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H

Details

CWE
CWE-306
Status published
Products (1)
lifterlms/lifterlms < 3.34.5
Published Sep 10, 2019
Tracked Since Feb 18, 2026