CVE-2020-7108

MEDIUM

LearnDash 3.0-3.1.2 - Cross-Site Scripting via ld-profile Search Field

Title source: llm
STIX 2.1

Exploitation Summary

EIP tracks 1 public exploit for CVE-2020-7108. PoCs published by Jinson Varghese Behanan.

AI-analyzed exploit summary This exploit demonstrates a reflected XSS vulnerability in LearnDash WordPress LMS Plugin versions 3.0.0 to 3.1.1. The payload is injected via the 'ld-profile-search' parameter, which is not properly sanitized, leading to arbitrary JavaScript execution.

Description

The LearnDash LMS plugin before 3.1.2 for WordPress allows XSS via the ld-profile search field.

Exploits (1)

exploitdb WORKING POC
by Jinson Varghese Behanan · textwebappsphp
https://www.exploit-db.com/exploits/48030

This exploit demonstrates a reflected XSS vulnerability in LearnDash WordPress LMS Plugin versions 3.0.0 to 3.1.1. The payload is injected via the 'ld-profile-search' parameter, which is not properly sanitized, leading to arbitrary JavaScript execution.

Classification
Working Poc 90%
Attack Type
Xss
Complexity
Trivial
Reliability
Reliable
Target: LearnDash WordPress LMS Plugin 3.0.0 - 3.1.1
Auth required
Prerequisites: User must be logged in to the WordPress site · Vulnerable version of LearnDash plugin installed
MITRE ATT&CK
devstral-2 · analyzed Feb 16, 2026 Full analysis →

References (5)

Core 5

Scores

CVSS v3 5.4
EPSS 0.0346
EPSS Percentile 87.5%
Attack Vector NETWORK
CVSS:3.1/AV:N/AC:L/PR:L/UI:R/S:C/C:L/I:L/A:N

Details

CWE
CWE-79
Status published
Products (1)
learndash/learndash 3.0 - 3.1.2
Published Jan 16, 2020
Tracked Since Feb 18, 2026