WordPress database error: [Table 'aeraK_options' is read only]
DELETE FROM `aeraK_options` WHERE `option_name` = '_transient_imunify_security_rules_1781246425_2774501'

WordPress database error: [Table 'aeraK_options' is read only]
DELETE FROM `aeraK_options` WHERE `option_name` = '_transient_timeout_imunify_security_rules_1781246425_2774501'

WordPress database error: [Table 'aeraK_options' is read only]
INSERT INTO `aeraK_options` (`option_name`, `option_value`, `autoload`) VALUES ('_transient_timeout_imunify_security_rules_1781246425_2774501', '1781694977', 'off') ON DUPLICATE KEY UPDATE `option_name` = VALUES(`option_name`), `option_value` = VALUES(`option_value`), `autoload` = VALUES(`autoload`)

WordPress database error: [Table 'aeraK_options' is read only]
INSERT INTO `aeraK_options` (`option_name`, `option_value`, `autoload`) VALUES ('_transient_imunify_security_rules_1781246425_2774501', 'a:2:{s:7:\"version\";s:7:\"0.679.0\";s:5:\"rules\";a:39:{s:46:\"RULE-CAMPAIGN-LEARNPRESS-C-ONLY-FIELDS-SQLI-01\";a:11:{s:3:\"cve\";s:41:\"CAMPAIGN-2026-W18-LEARNPRESS-CFIELDS-SQLI\";s:11:\"description\";s:345:\"LearnPress — block SQL injection attempts via the \'c_only_fields\' query\nparameter on the REST endpoints /wp-json/learnpress/v1/courses and\n/wp-json/learnpress/v1/profile/course-tab. The parameter is a column-name\nprojection list; legitimate values are bare identifiers. SQL keywords or\nfunction-call syntax in the value indicates injection.\n\";s:8:\"cve_link\";s:0:\"\";s:8:\"severity\";d:8.5;s:4:\"tags\";a:3:{i:0;s:13:\"sql-injection\";i:1;s:8:\"rest-api\";i:2;s:15:\"unauthenticated\";}s:4:\"mode\";s:5:\"block\";s:6:\"target\";s:6:\"plugin\";s:4:\"slug\";s:10:\"learnpress\";s:8:\"versions\";s:3:\">=0\";s:6:\"action\";s:13:\"rest_api_init\";s:10:\"conditions\";a:2:{i:0;a:3:{s:4:\"name\";s:11:\"REQUEST_URI\";s:4:\"type\";s:5:\"regex\";s:5:\"value\";s:90:\"~(?:^/wp-json|(?:^|&|\\?)rest_route=)/learnpress/v1/(courses|profile/course-tab)([/?&]|$)~i\";}i:1;a:2:{s:4:\"name\";s:18:\"ARGS:c_only_fields\";s:4:\"type\";s:10:\"detectSQLi\";}}}s:22:\"RULE-CVE-2025-11220-01\";a:12:{s:3:\"cve\";s:14:\"CVE-2025-11220\";s:11:\"description\";s:100:\"Elementor <=3.33.3 Authenticated (Contributor+) Stored DOM-Based XSS via Text Path widget SVG markup\";s:8:\"cve_link\";s:47:\"https://nvd.nist.gov/vuln/detail/CVE-2025-11220\";s:8:\"severity\";d:6.4000000000000003552713678800500929355621337890625;s:4:\"tags\";a:4:{i:0;s:3:\"xss\";i:1;s:10:\"stored-xss\";i:2;s:13:\"svg-injection\";i:3;s:9:\"elementor\";}s:4:\"mode\";s:5:\"block\";s:6:\"target\";s:6:\"plugin\";s:4:\"slug\";s:9:\"elementor\";s:8:\"versions\";s:8:\"<=3.33.3\";s:6:\"method\";s:4:\"POST\";s:11:\"ajax_action\";s:14:\"elementor_ajax\";s:10:\"conditions\";a:3:{i:0;a:3:{s:4:\"name\";s:12:\"ARGS:actions\";s:4:\"type\";s:8:\"contains\";s:5:\"value\";s:9:\"text-path\";}i:1;a:3:{s:4:\"name\";s:12:\"ARGS:actions\";s:4:\"type\";s:5:\"regex\";s:5:\"value\";s:116:\"~<(?:script|iframe|embed|object|form|meta|link|base)\\b|\\bon(?:error|load|begin|end|click|mouseover|focus|blur)\\s*=~i\";}i:2;a:2:{s:4:\"type\";s:18:\"missing_capability\";s:5:\"value\";s:15:\"unfiltered_html\";}}}s:22:\"RULE-CVE-2025-11372-01\";a:12:{s:3:\"cve\";s:14:\"CVE-2025-11372\";s:11:\"description\";s:435:\"LearnPress – WordPress LMS Plugin Admin Tools REST create-indexs endpoint is exposed without authorization because it is registered with permission_callback set to __return_true, allowing unauthenticated destructive database operations (dropping indexes on any table including wp_options, creating duplicate configuration entries, and degrading performance) via /wp-json/lp/v1/admin/tools/create-indexs when table names are supplied.\";s:8:\"cve_link\";s:47:\"https://nvd.nist.gov/vuln/detail/CVE-2025-11372\";s:8:\"severity\";d:6.5;s:4:\"tags\";a:4:{i:0;s:21:\"missing-authorization\";i:1;s:8:\"rest-api\";i:2;s:15:\"unauthenticated\";i:3;s:21:\"database-manipulation\";}s:4:\"mode\";s:5:\"block\";s:6:\"target\";s:6:\"plugin\";s:4:\"slug\";s:10:\"learnpress\";s:8:\"versions\";s:9:\"<=4.2.9.3\";s:6:\"method\";s:4:\"POST\";s:6:\"action\";s:13:\"rest_api_init\";s:10:\"conditions\";a:2:{i:0;a:3:{s:4:\"name\";s:11:\"REQUEST_URI\";s:4:\"type\";s:8:\"contains\";s:5:\"value\";s:31:\"lp/v1/admin/tools/create-indexs\";}i:1;a:2:{s:4:\"type\";s:18:\"missing_capability\";s:5:\"value\";s:14:\"manage_options\";}}}s:22:\"RULE-CVE-2025-12654-01\";a:12:{s:3:\"cve\";s:14:\"CVE-2025-12654\";s:11:\"description\";s:0:\"\";s:8:\"cve_link\";s:0:\"\";s:8:\"severity\";d:2.70000000000000017763568394002504646778106689453125;s:4:\"tags\";a:0:{}s:4:\"mode\";s:5:\"block\";s:6:\"target\";s:6:\"plugin\";s:4:\"slug\";s:21:\"wpvivid-backuprestore\";s:8:\"versions\";s:9:\"<=0.9.120\";s:6:\"method\";s:4:\"POST\";s:11:\"ajax_action\";s:44:\"wpvividstg_check_filesystem_permissions_free\";s:10:\"conditions\";a:3:{i:0;a:2:{s:4:\"type\";s:18:\"missing_capability\";s:5:\"value\";s:14:\"manage_options\";}i:1;a:3:{s:4:\"name\";s:18:\"ARGS:create_new_wp\";s:4:\"type\";s:6:\"equals\";s:5:\"value\";s:1:\"1\";}i:2;a:3:{s:4:\"name\";s:8:\"ARGS:pwd\";s:4:\"type\";s:5:\"regex\";s:5:\"value\";s:65:\"~(^/|^[A-Za-z]:\\\\|\\.{2}|[/\\\\]{2,}|/etc/|^/var/|^/tmp/|/\\.|\\\\\\.)~i\";}}}s:22:\"RULE-CVE-2025-13964-01\";a:12:{s:3:\"cve\";s:14:\"CVE-2025-13964\";s:11:\"description\";s:94:\"LearnPress <=4.3.2 unauthenticated course section creation via lp-load-ajax=course_add_section\";s:8:\"cve_link\";s:47:\"https://nvd.nist.gov/vuln/detail/CVE-2025-13964\";s:8:\"severity\";d:5.29999999999999982236431605997495353221893310546875;s:4:\"tags\";a:3:{i:0;s:21:\"missing-authorization\";i:1;s:15:\"unauthenticated\";i:2;s:21:\"broken-access-control\";}s:4:\"mode\";s:5:\"block\";s:6:\"target\";s:6:\"plugin\";s:4:\"slug\";s:10:\"learnpress\";s:8:\"versions\";s:7:\"<=4.3.2\";s:6:\"method\";s:4:\"POST\";s:6:\"action\";s:9:\"wp_loaded\";s:10:\"conditions\";a:2:{i:0;a:3:{s:4:\"name\";s:17:\"ARGS:lp-load-ajax\";s:4:\"type\";s:6:\"equals\";s:5:\"value\";s:18:\"course_add_section\";}i:1;a:2:{s:4:\"type\";s:18:\"missing_capability\";s:5:\"value\";s:10:\"edit_posts\";}}}s:22:\"RULE-CVE-2025-13964-02\";a:12:{s:3:\"cve\";s:14:\"CVE-2025-13964\";s:11:\"description\";s:95:\"LearnPress <=4.3.2 unauthenticated course section update via lp-load-ajax=course_update_section\";s:8:\"cve_link\";s:47:\"https://nvd.nist.gov/vuln/detail/CVE-2025-13964\";s:8:\"severity\";d:5.29999999999999982236431605997495353221893310546875;s:4:\"tags\";a:3:{i:0;s:21:\"missing-authorization\";i:1;s:15:\"unauthenticated\";i:2;s:21:\"broken-access-control\";}s:4:\"mode\";s:5:\"block\";s:6:\"target\";s:6:\"plugin\";s:4:\"slug\";s:10:\"learnpress\";s:8:\"versions\";s:7:\"<=4.3.2\";s:6:\"method\";s:4:\"POST\";s:6:\"action\";s:9:\"wp_loaded\";s:10:\"conditions\";a:2:{i:0;a:3:{s:4:\"name\";s:17:\"ARGS:lp-load-ajax\";s:4:\"type\";s:6:\"equals\";s:5:\"value\";s:21:\"course_update_section\";}i:1;a:2:{s:4:\"type\";s:18:\"missing_capability\";s:5:\"value\";s:10:\"edit_posts\";}}}s:22:\"RULE-CVE-2025-13964-03\";a:12:{s:3:\"cve\";s:14:\"CVE-2025-13964\";s:11:\"description\";s:97:\"LearnPress <=4.3.2 unauthenticated course section deletion via lp-load-ajax=course_delete_section\";s:8:\"cve_link\";s:47:\"https://nvd.nist.gov/vuln/detail/CVE-2025-13964\";s:8:\"severity\";d:5.29999999999999982236431605997495353221893310546875;s:4:\"tags\";a:3:{i:0;s:21:\"missing-authorization\";i:1;s:15:\"unauthenticated\";i:2;s:21:\"broken-access-control\";}s:4:\"mode\";s:5:\"block\";s:6:\"target\";s:6:\"plugin\";s:4:\"slug\";s:10:\"learnpress\";s:8:\"versions\";s:7:\"<=4.3.2\";s:6:\"method\";s:4:\"POST\";s:6:\"action\";s:9:\"wp_loaded\";s:10:\"conditions\";a:2:{i:0;a:3:{s:4:\"name\";s:17:\"ARGS:lp-load-ajax\";s:4:\"type\";s:6:\"equals\";s:5:\"value\";s:21:\"course_delete_section\";}i:1;a:2:{s:4:\"type\";s:18:\"missing_capability\";s:5:\"value\";s:10:\"edit_posts\";}}}s:22:\"RULE-CVE-2025-13964-04\";a:12:{s:3:\"cve\";s:14:\"CVE-2025-13964\";s:11:\"description\";s:98:\"LearnPress <=4.3.2 unauthenticated section reorder via lp-load-ajax=course_update_section_position\";s:8:\"cve_link\";s:47:\"https://nvd.nist.gov/vuln/detail/CVE-2025-13964\";s:8:\"severity\";d:5.29999999999999982236431605997495353221893310546875;s:4:\"tags\";a:3:{i:0;s:21:\"missing-authorization\";i:1;s:15:\"unauthenticated\";i:2;s:21:\"broken-access-control\";}s:4:\"mode\";s:5:\"block\";s:6:\"target\";s:6:\"plugin\";s:4:\"slug\";s:10:\"learnpress\";s:8:\"versions\";s:7:\"<=4.3.2\";s:6:\"method\";s:4:\"POST\";s:6:\"action\";s:9:\"wp_loaded\";s:10:\"conditions\";a:2:{i:0;a:3:{s:4:\"name\";s:17:\"ARGS:lp-load-ajax\";s:4:\"type\";s:6:\"equals\";s:5:\"value\";s:30:\"course_update_section_position\";}i:1;a:2:{s:4:\"type\";s:18:\"missing_capability\";s:5:\"value\";s:10:\"edit_posts\";}}}s:22:\"RULE-CVE-2025-13964-05\";a:12:{s:3:\"cve\";s:14:\"CVE-2025-13964\";s:11:\"description\";s:92:\"LearnPress <=4.3.2 unauthenticated item creation via lp-load-ajax=create_item_add_to_section\";s:8:\"cve_link\";s:47:\"https://nvd.nist.gov/vuln/detail/CVE-2025-13964\";s:8:\"severity\";d:5.29999999999999982236431605997495353221893310546875;s:4:\"tags\";a:3:{i:0;s:21:\"missing-authorization\";i:1;s:15:\"unauthenticated\";i:2;s:21:\"broken-access-control\";}s:4:\"mode\";s:5:\"block\";s:6:\"target\";s:6:\"plugin\";s:4:\"slug\";s:10:\"learnpress\";s:8:\"versions\";s:7:\"<=4.3.2\";s:6:\"method\";s:4:\"POST\";s:6:\"action\";s:9:\"wp_loaded\";s:10:\"conditions\";a:2:{i:0;a:3:{s:4:\"name\";s:17:\"ARGS:lp-load-ajax\";s:4:\"type\";s:6:\"equals\";s:5:\"value\";s:26:\"create_item_add_to_section\";}i:1;a:2:{s:4:\"type\";s:18:\"missing_capability\";s:5:\"value\";s:10:\"edit_posts\";}}}s:22:\"RULE-CVE-2025-13964-06\";a:12:{s:3:\"cve\";s:14:\"CVE-2025-13964\";s:11:\"description\";s:86:\"LearnPress <=4.3.2 unauthenticated item addition via lp-load-ajax=add_items_to_section\";s:8:\"cve_link\";s:47:\"https://nvd.nist.gov/vuln/detail/CVE-2025-13964\";s:8:\"severity\";d:5.29999999999999982236431605997495353221893310546875;s:4:\"tags\";a:3:{i:0;s:21:\"missing-authorization\";i:1;s:15:\"unauthenticated\";i:2;s:21:\"broken-access-control\";}s:4:\"mode\";s:5:\"block\";s:6:\"target\";s:6:\"plugin\";s:4:\"slug\";s:10:\"learnpress\";s:8:\"versions\";s:7:\"<=4.3.2\";s:6:\"method\";s:4:\"POST\";s:6:\"action\";s:9:\"wp_loaded\";s:10:\"conditions\";a:2:{i:0;a:3:{s:4:\"name\";s:17:\"ARGS:lp-load-ajax\";s:4:\"type\";s:6:\"equals\";s:5:\"value\";s:20:\"add_items_to_section\";}i:1;a:2:{s:4:\"type\";s:18:\"missing_capability\";s:5:\"value\";s:10:\"edit_posts\";}}}s:22:\"RULE-CVE-2025-13964-07\";a:12:{s:3:\"cve\";s:14:\"CVE-2025-13964\";s:11:\"description\";s:90:\"LearnPress <=4.3.2 unauthenticated item deletion via lp-load-ajax=delete_item_from_section\";s:8:\"cve_link\";s:47:\"https://nvd.nist.gov/vuln/detail/CVE-2025-13964\";s:8:\"severity\";d:5.29999999999999982236431605997495353221893310546875;s:4:\"tags\";a:3:{i:0;s:21:\"missing-authorization\";i:1;s:15:\"unauthenticated\";i:2;s:21:\"broken-access-control\";}s:4:\"mode\";s:5:\"block\";s:6:\"target\";s:6:\"plugin\";s:4:\"slug\";s:10:\"learnpress\";s:8:\"versions\";s:7:\"<=4.3.2\";s:6:\"method\";s:4:\"POST\";s:6:\"action\";s:9:\"wp_loaded\";s:10:\"conditions\";a:2:{i:0;a:3:{s:4:\"name\";s:17:\"ARGS:lp-load-ajax\";s:4:\"type\";s:6:\"equals\";s:5:\"value\";s:24:\"delete_item_from_section\";}i:1;a:2:{s:4:\"type\";s:18:\"missing_capability\";s:5:\"value\";s:10:\"edit_posts\";}}}s:22:\"RULE-CVE-2025-13964-08\";a:12:{s:3:\"cve\";s:14:\"CVE-2025-13964\";s:11:\"description\";s:94:\"LearnPress <=4.3.2 unauthenticated item move via lp-load-ajax=update_item_section_and_position\";s:8:\"cve_link\";s:47:\"https://nvd.nist.gov/vuln/detail/CVE-2025-13964\";s:8:\"severity\";d:5.29999999999999982236431605997495353221893310546875;s:4:\"tags\";a:3:{i:0;s:21:\"missing-authorization\";i:1;s:15:\"unauthenticated\";i:2;s:21:\"broken-access-control\";}s:4:\"mode\";s:5:\"block\";s:6:\"target\";s:6:\"plugin\";s:4:\"slug\";s:10:\"learnpress\";s:8:\"versions\";s:7:\"<=4.3.2\";s:6:\"method\";s:4:\"POST\";s:6:\"action\";s:9:\"wp_loaded\";s:10:\"conditions\";a:2:{i:0;a:3:{s:4:\"name\";s:17:\"ARGS:lp-load-ajax\";s:4:\"type\";s:6:\"equals\";s:5:\"value\";s:32:\"update_item_section_and_position\";}i:1;a:2:{s:4:\"type\";s:18:\"missing_capability\";s:5:\"value\";s:10:\"edit_posts\";}}}s:22:\"RULE-CVE-2025-13964-09\";a:12:{s:3:\"cve\";s:14:\"CVE-2025-13964\";s:11:\"description\";s:86:\"LearnPress <=4.3.2 unauthenticated item reorder via lp-load-ajax=update_items_position\";s:8:\"cve_link\";s:47:\"https://nvd.nist.gov/vuln/detail/CVE-2025-13964\";s:8:\"severity\";d:5.29999999999999982236431605997495353221893310546875;s:4:\"tags\";a:3:{i:0;s:21:\"missing-authorization\";i:1;s:15:\"unauthenticated\";i:2;s:21:\"broken-access-control\";}s:4:\"mode\";s:5:\"block\";s:6:\"target\";s:6:\"plugin\";s:4:\"slug\";s:10:\"learnpress\";s:8:\"versions\";s:7:\"<=4.3.2\";s:6:\"method\";s:4:\"POST\";s:6:\"action\";s:9:\"wp_loaded\";s:10:\"conditions\";a:2:{i:0;a:3:{s:4:\"name\";s:17:\"ARGS:lp-load-ajax\";s:4:\"type\";s:6:\"equals\";s:5:\"value\";s:21:\"update_items_position\";}i:1;a:2:{s:4:\"type\";s:18:\"missing_capability\";s:5:\"value\";s:10:\"edit_posts\";}}}s:22:\"RULE-CVE-2025-13964-10\";a:12:{s:3:\"cve\";s:14:\"CVE-2025-13964\";s:11:\"description\";s:86:\"LearnPress <=4.3.2 unauthenticated item update via lp-load-ajax=update_item_of_section\";s:8:\"cve_link\";s:47:\"https://nvd.nist.gov/vuln/detail/CVE-2025-13964\";s:8:\"severity\";d:5.29999999999999982236431605997495353221893310546875;s:4:\"tags\";a:3:{i:0;s:21:\"missing-authorization\";i:1;s:15:\"unauthenticated\";i:2;s:21:\"broken-access-control\";}s:4:\"mode\";s:5:\"block\";s:6:\"target\";s:6:\"plugin\";s:4:\"slug\";s:10:\"learnpress\";s:8:\"versions\";s:7:\"<=4.3.2\";s:6:\"method\";s:4:\"POST\";s:6:\"action\";s:9:\"wp_loaded\";s:10:\"conditions\";a:2:{i:0;a:3:{s:4:\"name\";s:17:\"ARGS:lp-load-ajax\";s:4:\"type\";s:6:\"equals\";s:5:\"value\";s:22:\"update_item_of_section\";}i:1;a:2:{s:4:\"type\";s:18:\"missing_capability\";s:5:\"value\";s:10:\"edit_posts\";}}}s:22:\"RULE-CVE-2025-14732-01\";a:11:{s:3:\"cve\";s:14:\"CVE-2025-14732\";s:11:\"description\";s:69:\"Elementor <=3.35.5 stored XSS via REST API meta _elementor_data field\";s:8:\"cve_link\";s:47:\"https://nvd.nist.gov/vuln/detail/CVE-2025-14732\";s:8:\"severity\";d:6.4000000000000003552713678800500929355621337890625;s:4:\"tags\";a:3:{i:0;s:10:\"stored-xss\";i:1;s:8:\"rest-api\";i:2;s:13:\"authenticated\";}s:4:\"mode\";s:5:\"block\";s:6:\"target\";s:6:\"plugin\";s:4:\"slug\";s:9:\"elementor\";s:8:\"versions\";s:8:\"<=3.35.5\";s:6:\"action\";s:13:\"rest_api_init\";s:10:\"conditions\";a:3:{i:0;a:3:{s:4:\"name\";s:11:\"REQUEST_URI\";s:4:\"type\";s:5:\"regex\";s:5:\"value\";s:66:\"~(?:^/wp-json|(?:^|&|\\?)rest_route=)/wp/v2/posts/[0-9]+(?:[/?]|$)~\";}i:1;a:3:{s:4:\"name\";s:26:\"ARGS:meta[_elementor_data]\";s:4:\"type\";s:5:\"regex\";s:5:\"value\";s:78:\"~(?:<script[\\s/>]|on(?:error|load|click|mouseover|focus)\\s*=|javascript\\s*:)~i\";}i:2;a:2:{s:4:\"type\";s:18:\"missing_capability\";s:5:\"value\";s:15:\"unfiltered_html\";}}}s:21:\"RULE-CVE-2025-5585-01\";a:12:{s:3:\"cve\";s:13:\"CVE-2025-5585\";s:11:\"description\";s:118:\"SiteOrigin Widgets Bundle <=1.68.5 Stored XSS via javascript: URI in Slider widget data-url attribute (classic editor)\";s:8:\"cve_link\";s:46:\"https://nvd.nist.gov/vuln/detail/CVE-2025-5585\";s:8:\"severity\";d:5.4000000000000003552713678800500929355621337890625;s:4:\"tags\";a:3:{i:0;s:3:\"xss\";i:1;s:10:\"stored-xss\";i:2;s:16:\"contributor-plus\";}s:4:\"mode\";s:5:\"block\";s:6:\"target\";s:6:\"plugin\";s:4:\"slug\";s:17:\"so-widgets-bundle\";s:8:\"versions\";s:8:\"<=1.68.5\";s:6:\"method\";s:4:\"POST\";s:6:\"action\";s:4:\"init\";s:10:\"conditions\";a:2:{i:0;a:3:{s:4:\"name\";s:11:\"REQUEST_URI\";s:4:\"type\";s:5:\"regex\";s:5:\"value\";s:22:\"~^/wp-admin/post\\.php~\";}i:1;a:3:{s:4:\"name\";s:12:\"ARGS:content\";s:4:\"type\";s:5:\"regex\";s:5:\"value\";s:127:\"~data-url\\s*=\\s*[\"\']\\s*(?:\\{[^}]*[\"\']\\s*(?:url|href)\\s*[\"\']\\s*:\\s*[\"\']\\s*)?(?:(?:javascript|vbscript)\\s*:|data\\s*:(?!image/))~i\";}}}s:21:\"RULE-CVE-2025-5585-02\";a:12:{s:3:\"cve\";s:13:\"CVE-2025-5585\";s:11:\"description\";s:112:\"SiteOrigin Widgets Bundle <=1.68.5 Stored XSS via javascript: URI in Slider widget data-url attribute (REST API)\";s:8:\"cve_link\";s:46:\"https://nvd.nist.gov/vuln/detail/CVE-2025-5585\";s:8:\"severity\";d:5.4000000000000003552713678800500929355621337890625;s:4:\"tags\";a:4:{i:0;s:3:\"xss\";i:1;s:10:\"stored-xss\";i:2;s:8:\"rest-api\";i:3;s:16:\"contributor-plus\";}s:4:\"mode\";s:5:\"block\";s:6:\"target\";s:6:\"plugin\";s:4:\"slug\";s:17:\"so-widgets-bundle\";s:8:\"versions\";s:8:\"<=1.68.5\";s:6:\"method\";s:4:\"POST\";s:6:\"action\";s:13:\"rest_api_init\";s:10:\"conditions\";a:2:{i:0;a:3:{s:4:\"name\";s:11:\"REQUEST_URI\";s:4:\"type\";s:5:\"regex\";s:5:\"value\";s:49:\"~(?:^/wp-json|(?:^|&|\\?)rest_route=)/wp/v2/posts~\";}i:1;a:3:{s:4:\"name\";s:12:\"ARGS:content\";s:4:\"type\";s:5:\"regex\";s:5:\"value\";s:127:\"~data-url\\s*=\\s*[\"\']\\s*(?:\\{[^}]*[\"\']\\s*(?:url|href)\\s*[\"\']\\s*:\\s*[\"\']\\s*)?(?:(?:javascript|vbscript)\\s*:|data\\s*:(?!image/))~i\";}}}s:21:\"RULE-CVE-2025-5961-01\";a:12:{s:3:\"cve\";s:13:\"CVE-2025-5961\";s:11:\"description\";s:0:\"\";s:8:\"cve_link\";s:0:\"\";s:8:\"severity\";d:7.20000000000000017763568394002504646778106689453125;s:4:\"tags\";a:0:{}s:4:\"mode\";s:5:\"block\";s:6:\"target\";s:6:\"plugin\";s:4:\"slug\";s:21:\"wpvivid-backuprestore\";s:8:\"versions\";s:9:\"<=0.9.116\";s:6:\"method\";s:4:\"POST\";s:11:\"ajax_action\";s:27:\"wpvivid_upload_import_files\";s:10:\"conditions\";a:1:{i:0;a:3:{s:4:\"name\";s:9:\"ARGS:name\";s:4:\"type\";s:5:\"regex\";s:5:\"value\";s:68:\"~\\.(?:php\\d*|phtml|phar|shtml|cgi|asp|aspx|jsp|jspx)(?:\\x00|%00|$)~i\";}}}s:22:\"RULE-CVE-2025-66054-01\";a:11:{s:3:\"cve\";s:14:\"CVE-2025-66054\";s:11:\"description\";s:0:\"\";s:8:\"cve_link\";s:0:\"\";s:8:\"severity\";d:7.5;s:4:\"tags\";a:0:{}s:4:\"mode\";s:5:\"block\";s:6:\"target\";s:6:\"plugin\";s:4:\"slug\";s:10:\"learnpress\";s:8:\"versions\";s:9:\"<=4.2.9.4\";s:6:\"action\";s:13:\"rest_api_init\";s:10:\"conditions\";a:3:{i:0;a:3:{s:4:\"name\";s:11:\"REQUEST_URI\";s:4:\"type\";s:5:\"regex\";s:5:\"value\";s:86:\"~(?:/wp-json/lp/v1/load_content_via_ajax|[?&]rest_route=/lp/v1/load_content_via_ajax)~\";}i:1;a:2:{s:4:\"name\";s:13:\"ARGS:callback\";s:4:\"type\";s:6:\"exists\";}i:2;a:2:{s:4:\"type\";s:18:\"missing_capability\";s:5:\"value\";s:14:\"manage_options\";}}}s:22:\"RULE-CVE-2025-67588-01\";a:12:{s:3:\"cve\";s:14:\"CVE-2025-67588\";s:11:\"description\";s:0:\"\";s:8:\"cve_link\";s:0:\"\";s:8:\"severity\";d:4.29999999999999982236431605997495353221893310546875;s:4:\"tags\";a:0:{}s:4:\"mode\";s:5:\"block\";s:6:\"target\";s:6:\"plugin\";s:4:\"slug\";s:9:\"elementor\";s:8:\"versions\";s:8:\"<=3.33.0\";s:6:\"method\";s:4:\"POST\";s:6:\"action\";s:13:\"rest_api_init\";s:10:\"conditions\";a:2:{i:0;a:3:{s:4:\"name\";s:11:\"REQUEST_URI\";s:4:\"type\";s:5:\"regex\";s:5:\"value\";s:110:\"~^(?:/wp-json/wp/v2/e-floating-buttons(?:/|\\?|$)|/\\?(?:[^#]*&)?rest_route=/wp/v2/e-floating-buttons(?:/|$|&))~\";}i:1;a:2:{s:4:\"type\";s:18:\"missing_capability\";s:5:\"value\";s:14:\"manage_options\";}}}s:22:\"RULE-CVE-2025-67588-02\";a:12:{s:3:\"cve\";s:14:\"CVE-2025-67588\";s:11:\"description\";s:0:\"\";s:8:\"cve_link\";s:0:\"\";s:8:\"severity\";d:4.29999999999999982236431605997495353221893310546875;s:4:\"tags\";a:0:{}s:4:\"mode\";s:5:\"block\";s:6:\"target\";s:6:\"plugin\";s:4:\"slug\";s:9:\"elementor\";s:8:\"versions\";s:8:\"<=3.33.0\";s:6:\"method\";s:3:\"PUT\";s:6:\"action\";s:13:\"rest_api_init\";s:10:\"conditions\";a:2:{i:0;a:3:{s:4:\"name\";s:11:\"REQUEST_URI\";s:4:\"type\";s:5:\"regex\";s:5:\"value\";s:110:\"~^(?:/wp-json/wp/v2/e-floating-buttons(?:/|\\?|$)|/\\?(?:[^#]*&)?rest_route=/wp/v2/e-floating-buttons(?:/|$|&))~\";}i:1;a:2:{s:4:\"type\";s:18:\"missing_capability\";s:5:\"value\";s:14:\"manage_options\";}}}s:22:\"RULE-CVE-2025-67588-03\";a:12:{s:3:\"cve\";s:14:\"CVE-2025-67588\";s:11:\"description\";s:0:\"\";s:8:\"cve_link\";s:0:\"\";s:8:\"severity\";d:4.29999999999999982236431605997495353221893310546875;s:4:\"tags\";a:0:{}s:4:\"mode\";s:5:\"block\";s:6:\"target\";s:6:\"plugin\";s:4:\"slug\";s:9:\"elementor\";s:8:\"versions\";s:8:\"<=3.33.0\";s:6:\"method\";s:5:\"PATCH\";s:6:\"action\";s:13:\"rest_api_init\";s:10:\"conditions\";a:2:{i:0;a:3:{s:4:\"name\";s:11:\"REQUEST_URI\";s:4:\"type\";s:5:\"regex\";s:5:\"value\";s:110:\"~^(?:/wp-json/wp/v2/e-floating-buttons(?:/|\\?|$)|/\\?(?:[^#]*&)?rest_route=/wp/v2/e-floating-buttons(?:/|$|&))~\";}i:1;a:2:{s:4:\"type\";s:18:\"missing_capability\";s:5:\"value\";s:14:\"manage_options\";}}}s:22:\"RULE-CVE-2025-67588-04\";a:12:{s:3:\"cve\";s:14:\"CVE-2025-67588\";s:11:\"description\";s:0:\"\";s:8:\"cve_link\";s:0:\"\";s:8:\"severity\";d:4.29999999999999982236431605997495353221893310546875;s:4:\"tags\";a:0:{}s:4:\"mode\";s:5:\"block\";s:6:\"target\";s:6:\"plugin\";s:4:\"slug\";s:9:\"elementor\";s:8:\"versions\";s:8:\"<=3.33.0\";s:6:\"method\";s:6:\"DELETE\";s:6:\"action\";s:13:\"rest_api_init\";s:10:\"conditions\";a:2:{i:0;a:3:{s:4:\"name\";s:11:\"REQUEST_URI\";s:4:\"type\";s:5:\"regex\";s:5:\"value\";s:110:\"~^(?:/wp-json/wp/v2/e-floating-buttons(?:/|\\?|$)|/\\?(?:[^#]*&)?rest_route=/wp/v2/e-floating-buttons(?:/|$|&))~\";}i:1;a:2:{s:4:\"type\";s:18:\"missing_capability\";s:5:\"value\";s:14:\"manage_options\";}}}s:21:\"RULE-CVE-2025-8081-01\";a:12:{s:3:\"cve\";s:13:\"CVE-2025-8081\";s:11:\"description\";s:0:\"\";s:8:\"cve_link\";s:0:\"\";s:8:\"severity\";d:4.9000000000000003552713678800500929355621337890625;s:4:\"tags\";a:0:{}s:4:\"mode\";s:5:\"block\";s:6:\"target\";s:6:\"plugin\";s:4:\"slug\";s:9:\"elementor\";s:8:\"versions\";s:8:\"<=3.30.2\";s:6:\"method\";s:4:\"POST\";s:11:\"ajax_action\";s:14:\"elementor_ajax\";s:10:\"conditions\";a:2:{i:0;a:3:{s:4:\"name\";s:12:\"ARGS:actions\";s:4:\"type\";s:5:\"regex\";s:5:\"value\";s:122:\"~tmp_name[\"\']?\\s*[:=]\\s*[\"\']?(?:\\.\\.[\\\\/]|/(?:etc|proc|var|usr|home|root)/|[a-zA-Z]:\\\\|wp-config\\.php|%00|\\\\x00|\\\\u002e)~i\";}i:1;a:2:{s:4:\"type\";s:18:\"missing_capability\";s:5:\"value\";s:14:\"manage_options\";}}}s:21:\"RULE-CVE-2025-8081-02\";a:12:{s:3:\"cve\";s:13:\"CVE-2025-8081\";s:11:\"description\";s:0:\"\";s:8:\"cve_link\";s:0:\"\";s:8:\"severity\";d:4.9000000000000003552713678800500929355621337890625;s:4:\"tags\";a:0:{}s:4:\"mode\";s:5:\"block\";s:6:\"target\";s:6:\"plugin\";s:4:\"slug\";s:9:\"elementor\";s:8:\"versions\";s:8:\"<=3.30.2\";s:6:\"method\";s:4:\"POST\";s:11:\"ajax_action\";s:32:\"elementor_library_direct_actions\";s:10:\"conditions\";a:1:{i:0;a:2:{s:4:\"type\";s:18:\"missing_capability\";s:5:\"value\";s:14:\"manage_options\";}}}s:21:\"RULE-CVE-2025-9130-01\";a:12:{s:3:\"cve\";s:13:\"CVE-2025-9130\";s:11:\"description\";s:126:\"Unify <=3.4.7 Authenticated (Contributor+) Stored XSS via unify_checkout shortcode token attribute in classic editor post save\";s:8:\"cve_link\";s:46:\"https://nvd.nist.gov/vuln/detail/CVE-2025-9130\";s:8:\"severity\";d:6.4000000000000003552713678800500929355621337890625;s:4:\"tags\";a:4:{i:0;s:3:\"xss\";i:1;s:10:\"stored-xss\";i:2;s:9:\"shortcode\";i:3;s:13:\"authenticated\";}s:4:\"mode\";s:5:\"block\";s:6:\"target\";s:6:\"plugin\";s:4:\"slug\";s:5:\"unify\";s:8:\"versions\";s:7:\"<=3.4.7\";s:6:\"method\";s:4:\"POST\";s:6:\"action\";s:4:\"init\";s:10:\"conditions\";a:3:{i:0;a:3:{s:4:\"name\";s:11:\"REQUEST_URI\";s:4:\"type\";s:5:\"regex\";s:5:\"value\";s:22:\"~^/wp-admin/post\\.php~\";}i:1;a:3:{s:4:\"name\";s:17:\"ARGS:post_content\";s:4:\"type\";s:5:\"regex\";s:5:\"value\";s:141:\"~\\[unify_checkout\\b[^\\]]*(?:<script|\\bon(?:error|load|click|mouseover|focus|change|submit|focusin)\\s*=|javascript\\s*:|data\\s*:\\s*text/html)~i\";}i:2;a:2:{s:4:\"type\";s:18:\"missing_capability\";s:5:\"value\";s:14:\"manage_options\";}}}s:21:\"RULE-CVE-2025-9130-02\";a:12:{s:3:\"cve\";s:13:\"CVE-2025-9130\";s:11:\"description\";s:124:\"Unify <=3.4.7 Authenticated (Contributor+) Stored XSS via unify_checkout shortcode token attribute in REST API post creation\";s:8:\"cve_link\";s:46:\"https://nvd.nist.gov/vuln/detail/CVE-2025-9130\";s:8:\"severity\";d:6.4000000000000003552713678800500929355621337890625;s:4:\"tags\";a:5:{i:0;s:3:\"xss\";i:1;s:10:\"stored-xss\";i:2;s:9:\"shortcode\";i:3;s:13:\"authenticated\";i:4;s:8:\"rest-api\";}s:4:\"mode\";s:5:\"block\";s:6:\"target\";s:6:\"plugin\";s:4:\"slug\";s:5:\"unify\";s:8:\"versions\";s:7:\"<=3.4.7\";s:6:\"method\";s:4:\"POST\";s:6:\"action\";s:13:\"rest_api_init\";s:10:\"conditions\";a:3:{i:0;a:3:{s:4:\"name\";s:11:\"REQUEST_URI\";s:4:\"type\";s:5:\"regex\";s:5:\"value\";s:57:\"~(?:^/wp-json|(?:^|&|\\?)rest_route=)/wp/v2/posts(/|\\?|$)~\";}i:1;a:3:{s:4:\"name\";s:12:\"ARGS:content\";s:4:\"type\";s:5:\"regex\";s:5:\"value\";s:141:\"~\\[unify_checkout\\b[^\\]]*(?:<script|\\bon(?:error|load|click|mouseover|focus|change|submit|focusin)\\s*=|javascript\\s*:|data\\s*:\\s*text/html)~i\";}i:2;a:2:{s:4:\"type\";s:18:\"missing_capability\";s:5:\"value\";s:14:\"manage_options\";}}}s:21:\"RULE-CVE-2026-1870-01\";a:11:{s:3:\"cve\";s:13:\"CVE-2026-1870\";s:11:\"description\";s:148:\"Thim Elementor Kit <=1.3.7 unauthenticated information disclosure of private/draft LearnPress courses via post_status in params_url on REST endpoint\";s:8:\"cve_link\";s:46:\"https://nvd.nist.gov/vuln/detail/CVE-2026-1870\";s:8:\"severity\";d:5.29999999999999982236431605997495353221893310546875;s:4:\"tags\";a:4:{i:0;s:21:\"missing-authorization\";i:1;s:22:\"information-disclosure\";i:2;s:8:\"rest-api\";i:3;s:15:\"unauthenticated\";}s:4:\"mode\";s:5:\"block\";s:6:\"target\";s:6:\"plugin\";s:4:\"slug\";s:18:\"thim-elementor-kit\";s:8:\"versions\";s:7:\"<=1.3.7\";s:6:\"action\";s:13:\"rest_api_init\";s:10:\"conditions\";a:3:{i:0;a:3:{s:4:\"name\";s:11:\"REQUEST_URI\";s:4:\"type\";s:5:\"regex\";s:5:\"value\";s:85:\"~(?:^/wp-json|(?:^|&|\\?)rest_route=)/thim-ekit/archive-course/get-courses(?:[/?&]|$)~\";}i:1;a:3:{s:4:\"name\";s:28:\"ARGS:params_url[post_status]\";s:4:\"type\";s:5:\"regex\";s:5:\"value\";s:62:\"~^(?:private|draft|pending|trash|auto-draft|future|inherit)$~i\";}i:2;a:3:{s:4:\"name\";s:9:\"ARGS:atts\";s:4:\"type\";s:5:\"regex\";s:5:\"value\";s:4:\"~.+~\";}}}s:21:\"RULE-CVE-2026-2448-01\";a:12:{s:3:\"cve\";s:13:\"CVE-2026-2448\";s:11:\"description\";s:98:\"Page Builder by SiteOrigin <=2.33.5 Local File Inclusion via path traversal in live editor preview\";s:8:\"cve_link\";s:46:\"https://nvd.nist.gov/vuln/detail/CVE-2026-2448\";s:8:\"severity\";d:8.800000000000000710542735760100185871124267578125;s:4:\"tags\";a:3:{i:0;s:20:\"local-file-inclusion\";i:1;s:14:\"path-traversal\";i:2;s:13:\"authenticated\";}s:4:\"mode\";s:5:\"block\";s:6:\"target\";s:6:\"plugin\";s:4:\"slug\";s:17:\"siteorigin-panels\";s:8:\"versions\";s:8:\"<=2.33.5\";s:6:\"method\";s:4:\"POST\";s:11:\"ajax_action\";s:29:\"so_panels_live_editor_preview\";s:10:\"conditions\";a:1:{i:0;a:3:{s:4:\"name\";s:4:\"ARGS\";s:4:\"type\";s:5:\"regex\";s:5:\"value\";s:122:\"~(?:[.][.][/\\\\]|[.][.][%](?:2[fF]|5[cC])|%2e%2e[%2f%5c\\\\]|%252e%252e[%2f%5c\\\\%]|\\\\u002e\\\\u002e(?:\\\\u002[fF]|\\\\u005[cC]))~i\";}}}s:21:\"RULE-CVE-2026-2448-02\";a:12:{s:3:\"cve\";s:13:\"CVE-2026-2448\";s:11:\"description\";s:99:\"Page Builder by SiteOrigin <=2.33.5 Local File Inclusion via path traversal in layout block preview\";s:8:\"cve_link\";s:46:\"https://nvd.nist.gov/vuln/detail/CVE-2026-2448\";s:8:\"severity\";d:8.800000000000000710542735760100185871124267578125;s:4:\"tags\";a:3:{i:0;s:20:\"local-file-inclusion\";i:1;s:14:\"path-traversal\";i:2;s:13:\"authenticated\";}s:4:\"mode\";s:5:\"block\";s:6:\"target\";s:6:\"plugin\";s:4:\"slug\";s:17:\"siteorigin-panels\";s:8:\"versions\";s:8:\"<=2.33.5\";s:6:\"method\";s:4:\"POST\";s:11:\"ajax_action\";s:30:\"so_panels_layout_block_preview\";s:10:\"conditions\";a:1:{i:0;a:3:{s:4:\"name\";s:4:\"ARGS\";s:4:\"type\";s:5:\"regex\";s:5:\"value\";s:122:\"~(?:[.][.][/\\\\]|[.][.][%](?:2[fF]|5[cC])|%2e%2e[%2f%5c\\\\]|%252e%252e[%2f%5c\\\\%]|\\\\u002e\\\\u002e(?:\\\\u002[fF]|\\\\u005[cC]))~i\";}}}s:21:\"RULE-CVE-2026-2448-03\";a:12:{s:3:\"cve\";s:13:\"CVE-2026-2448\";s:11:\"description\";s:94:\"Page Builder by SiteOrigin <=2.33.5 Local File Inclusion via path traversal in builder content\";s:8:\"cve_link\";s:46:\"https://nvd.nist.gov/vuln/detail/CVE-2026-2448\";s:8:\"severity\";d:8.800000000000000710542735760100185871124267578125;s:4:\"tags\";a:3:{i:0;s:20:\"local-file-inclusion\";i:1;s:14:\"path-traversal\";i:2;s:13:\"authenticated\";}s:4:\"mode\";s:5:\"block\";s:6:\"target\";s:6:\"plugin\";s:4:\"slug\";s:17:\"siteorigin-panels\";s:8:\"versions\";s:8:\"<=2.33.5\";s:6:\"method\";s:4:\"POST\";s:11:\"ajax_action\";s:25:\"so_panels_builder_content\";s:10:\"conditions\";a:1:{i:0;a:3:{s:4:\"name\";s:4:\"ARGS\";s:4:\"type\";s:5:\"regex\";s:5:\"value\";s:122:\"~(?:[.][.][/\\\\]|[.][.][%](?:2[fF]|5[cC])|%2e%2e[%2f%5c\\\\]|%252e%252e[%2f%5c\\\\%]|\\\\u002e\\\\u002e(?:\\\\u002[fF]|\\\\u005[cC]))~i\";}}}s:21:\"RULE-CVE-2026-2712-01\";a:12:{s:3:\"cve\";s:13:\"CVE-2026-2712\";s:11:\"description\";s:137:\"WP-Optimize <=4.5.0 missing authorization in receive_heartbeat() allows subscriber+ to invoke admin-only Smush commands via Heartbeat API\";s:8:\"cve_link\";s:46:\"https://nvd.nist.gov/vuln/detail/CVE-2026-2712\";s:8:\"severity\";d:5.4000000000000003552713678800500929355621337890625;s:4:\"tags\";a:3:{i:0;s:23:\"incorrect-authorization\";i:1;s:18:\"missing-capability\";i:2;s:15:\"heartbeat-abuse\";}s:4:\"mode\";s:5:\"block\";s:6:\"target\";s:6:\"plugin\";s:4:\"slug\";s:11:\"wp-optimize\";s:8:\"versions\";s:7:\"<=4.5.0\";s:6:\"method\";s:4:\"POST\";s:11:\"ajax_action\";s:9:\"heartbeat\";s:10:\"conditions\";a:2:{i:0;a:3:{s:4:\"name\";s:47:\"ARGS:data[wp-optimize-heartbeat-smush][command]\";s:4:\"type\";s:5:\"regex\";s:5:\"value\";s:207:\"~^(?:get_smush_logs|clean_all_backup_images|process_bulk_smush|update_smush_options|get_smush_options|clear_smush_stats|clear_backup_images|clear_backup_images_directory|delete_log_files|get_logfile_path)$~i\";}i:1;a:2:{s:4:\"type\";s:18:\"missing_capability\";s:5:\"value\";s:14:\"manage_options\";}}}s:21:\"RULE-CVE-2026-3098-01\";a:12:{s:3:\"cve\";s:13:\"CVE-2026-3098\";s:11:\"description\";s:145:\"Smart Slider 3 <=3.5.1.33 arbitrary file read via export — restricts slider export to admins only (blocks subscriber/editor-level exploitation)\";s:8:\"cve_link\";s:46:\"https://nvd.nist.gov/vuln/detail/CVE-2026-3098\";s:8:\"severity\";d:6.5;s:4:\"tags\";a:3:{i:0;s:19:\"arbitrary-file-read\";i:1;s:3:\"lfi\";i:2;s:21:\"missing-authorization\";}s:4:\"mode\";s:5:\"block\";s:6:\"target\";s:6:\"plugin\";s:4:\"slug\";s:14:\"smart-slider-3\";s:8:\"versions\";s:10:\"<=3.5.1.33\";s:6:\"method\";s:4:\"POST\";s:11:\"ajax_action\";s:13:\"smart-slider3\";s:10:\"conditions\";a:3:{i:0;a:3:{s:4:\"name\";s:22:\"ARGS:nextendcontroller\";s:4:\"type\";s:5:\"regex\";s:5:\"value\";s:13:\"~^sliders?$~i\";}i:1;a:3:{s:4:\"name\";s:18:\"ARGS:nextendaction\";s:4:\"type\";s:5:\"regex\";s:5:\"value\";s:10:\"~^export~i\";}i:2;a:2:{s:4:\"type\";s:18:\"missing_capability\";s:5:\"value\";s:14:\"manage_options\";}}}s:21:\"RULE-CVE-2026-3226-01\";a:12:{s:3:\"cve\";s:13:\"CVE-2026-3226\";s:11:\"description\";s:134:\"LearnPress <=4.3.2.8 missing authorization on SendEmailAjax REST endpoints allows Subscriber+ to trigger arbitrary email notifications\";s:8:\"cve_link\";s:46:\"https://nvd.nist.gov/vuln/detail/CVE-2026-3226\";s:8:\"severity\";d:4.29999999999999982236431605997495353221893310546875;s:4:\"tags\";a:3:{i:0;s:21:\"missing-authorization\";i:1;s:21:\"broken-access-control\";i:2;s:8:\"rest-api\";}s:4:\"mode\";s:5:\"block\";s:6:\"target\";s:6:\"plugin\";s:4:\"slug\";s:10:\"learnpress\";s:8:\"versions\";s:9:\"<=4.3.2.8\";s:6:\"method\";s:4:\"POST\";s:6:\"action\";s:13:\"rest_api_init\";s:10:\"conditions\";a:2:{i:0;a:3:{s:4:\"name\";s:11:\"REQUEST_URI\";s:4:\"type\";s:5:\"regex\";s:5:\"value\";s:62:\"~(?:^/wp-json|(?:^|&|\\?)rest_route=)/lp/v1/send-email(/|\\?|$)~\";}i:1;a:2:{s:4:\"type\";s:18:\"missing_capability\";s:5:\"value\";s:14:\"manage_options\";}}}s:21:\"RULE-CVE-2026-4333-01\";a:12:{s:3:\"cve\";s:13:\"CVE-2026-4333\";s:11:\"description\";s:108:\"LearnPress <=4.3.3 Stored XSS via learn_press_courses shortcode skin attribute in post content (post editor)\";s:8:\"cve_link\";s:46:\"https://nvd.nist.gov/vuln/detail/CVE-2026-4333\";s:8:\"severity\";d:6.4000000000000003552713678800500929355621337890625;s:4:\"tags\";a:4:{i:0;s:3:\"xss\";i:1;s:6:\"stored\";i:2;s:9:\"shortcode\";i:3;s:13:\"authenticated\";}s:4:\"mode\";s:5:\"block\";s:6:\"target\";s:6:\"plugin\";s:4:\"slug\";s:10:\"learnpress\";s:8:\"versions\";s:7:\"<=4.3.3\";s:6:\"method\";s:4:\"POST\";s:6:\"action\";s:4:\"init\";s:10:\"conditions\";a:3:{i:0;a:3:{s:4:\"name\";s:11:\"REQUEST_URI\";s:4:\"type\";s:5:\"regex\";s:5:\"value\";s:22:\"~^/wp-admin/post\\.php~\";}i:1;a:3:{s:4:\"name\";s:17:\"ARGS:post_content\";s:4:\"type\";s:5:\"regex\";s:5:\"value\";s:118:\"~\\[learn_press_courses\\b[^\\]]*skin\\s*=\\s*[\"\'][^\"\']*(?:on[a-zA-Z]+\\s*=|<script|<img|<iframe|javascript\\s*:)[^\"\']*[\"\']~i\";}i:2;a:2:{s:4:\"type\";s:18:\"missing_capability\";s:5:\"value\";s:15:\"unfiltered_html\";}}}s:21:\"RULE-CVE-2026-4333-02\";a:12:{s:3:\"cve\";s:13:\"CVE-2026-4333\";s:11:\"description\";s:105:\"LearnPress <=4.3.3 Stored XSS via learn_press_courses shortcode skin attribute in post content (REST API)\";s:8:\"cve_link\";s:46:\"https://nvd.nist.gov/vuln/detail/CVE-2026-4333\";s:8:\"severity\";d:6.4000000000000003552713678800500929355621337890625;s:4:\"tags\";a:5:{i:0;s:3:\"xss\";i:1;s:6:\"stored\";i:2;s:9:\"shortcode\";i:3;s:8:\"rest-api\";i:4;s:13:\"authenticated\";}s:4:\"mode\";s:5:\"block\";s:6:\"target\";s:6:\"plugin\";s:4:\"slug\";s:10:\"learnpress\";s:8:\"versions\";s:7:\"<=4.3.3\";s:6:\"method\";s:4:\"POST\";s:6:\"action\";s:13:\"rest_api_init\";s:10:\"conditions\";a:3:{i:0;a:3:{s:4:\"name\";s:11:\"REQUEST_URI\";s:4:\"type\";s:5:\"regex\";s:5:\"value\";s:59:\"~(?:^/wp-json|(?:^|&|\\?)rest_route=)/wp/v2/posts(?:/|\\?|$)~\";}i:1;a:3:{s:4:\"name\";s:12:\"ARGS:content\";s:4:\"type\";s:5:\"regex\";s:5:\"value\";s:118:\"~\\[learn_press_courses\\b[^\\]]*skin\\s*=\\s*[\"\'][^\"\']*(?:on[a-zA-Z]+\\s*=|<script|<img|<iframe|javascript\\s*:)[^\"\']*[\"\']~i\";}i:2;a:2:{s:4:\"type\";s:18:\"missing_capability\";s:5:\"value\";s:15:\"unfiltered_html\";}}}s:21:\"RULE-CVE-2026-4365-01\";a:12:{s:3:\"cve\";s:13:\"CVE-2026-4365\";s:11:\"description\";s:102:\"LearnPress <=4.3.2.8 unauthenticated arbitrary quiz answer deletion via lp-ajax delete_question_answer\";s:8:\"cve_link\";s:46:\"https://nvd.nist.gov/vuln/detail/CVE-2026-4365\";s:8:\"severity\";d:9.0999999999999996447286321199499070644378662109375;s:4:\"tags\";a:3:{i:0;s:21:\"missing-authorization\";i:1;s:13:\"data-deletion\";i:2;s:15:\"unauthenticated\";}s:4:\"mode\";s:5:\"block\";s:6:\"target\";s:6:\"plugin\";s:4:\"slug\";s:10:\"learnpress\";s:8:\"versions\";s:9:\"<=4.3.2.8\";s:6:\"method\";s:4:\"POST\";s:6:\"action\";s:4:\"init\";s:10:\"conditions\";a:2:{i:0;a:3:{s:4:\"name\";s:12:\"ARGS:lp-ajax\";s:4:\"type\";s:6:\"equals\";s:5:\"value\";s:22:\"delete_question_answer\";}i:1;a:2:{s:4:\"type\";s:18:\"missing_capability\";s:5:\"value\";s:15:\"edit_lp_courses\";}}}s:14:\"TEST-HEARTBEAT\";a:11:{s:3:\"cve\";s:14:\"TEST-HEARTBEAT\";s:11:\"description\";s:0:\"\";s:8:\"cve_link\";s:0:\"\";s:8:\"severity\";d:0.1000000000000000055511151231257827021181583404541015625;s:4:\"tags\";a:0:{}s:4:\"mode\";s:4:\"pass\";s:6:\"target\";s:4:\"core\";s:4:\"slug\";s:0:\"\";s:8:\"versions\";s:7:\">=1.0.0\";s:6:\"action\";s:4:\"init\";s:10:\"conditions\";a:1:{i:0;a:2:{s:4:\"type\";s:13:\"probabilistic\";s:5:\"value\";s:6:\"0.0001\";}}}s:9:\"TEST-RULE\";a:11:{s:3:\"cve\";s:8:\"TEST-CVE\";s:11:\"description\";s:0:\"\";s:8:\"cve_link\";s:0:\"\";s:8:\"severity\";d:2;s:4:\"tags\";a:0:{}s:4:\"mode\";s:5:\"block\";s:6:\"target\";s:4:\"core\";s:4:\"slug\";s:0:\"\";s:8:\"versions\";s:7:\">=1.0.0\";s:6:\"action\";s:4:\"init\";s:10:\"conditions\";a:1:{i:0;a:3:{s:4:\"name\";s:14:\"ARGS:test-rule\";s:4:\"type\";s:6:\"equals\";s:5:\"value\";s:36:\"b3d45e60-53a5-4959-b911-5178baaef7ac\";}}}}}', 'off') ON DUPLICATE KEY UPDATE `option_name` = VALUES(`option_name`), `option_value` = VALUES(`option_value`), `autoload` = VALUES(`autoload`)

WordPress database error: [Table 'aeraK_options' is read only]
DELETE FROM `aeraK_options` WHERE `option_name` = '_transient_imunify_disabled_rules'

WordPress database error: [Table 'aeraK_options' is read only]
DELETE FROM `aeraK_options` WHERE `option_name` = '_transient_timeout_imunify_disabled_rules'

WordPress database error: [Table 'aeraK_options' is read only]
INSERT INTO `aeraK_options` (`option_name`, `option_value`, `autoload`) VALUES ('_transient_timeout_imunify_disabled_rules', '1781694977', 'off') ON DUPLICATE KEY UPDATE `option_name` = VALUES(`option_name`), `option_value` = VALUES(`option_value`), `autoload` = VALUES(`autoload`)

WordPress database error: [Table 'aeraK_options' is read only]
INSERT INTO `aeraK_options` (`option_name`, `option_value`, `autoload`) VALUES ('_transient_imunify_disabled_rules', 'a:3:{s:10:\"file_mtime\";i:1778660435;s:9:\"file_size\";i:115;s:5:\"rules\";a:0:{}}', 'off') ON DUPLICATE KEY UPDATE `option_name` = VALUES(`option_name`), `option_value` = VALUES(`option_value`), `autoload` = VALUES(`autoload`)

Page not found – Sarv Sanskriti School

Sarv Sanskriti School

  • NH 87, Near Mannat Garden, Bilaspur (U.P.)
  • 9917620138
  • sarvsanskritischool2415528@gmail.com
Search
Close this search box.
More Information

Page Not Found

404!

Page not found!

We couldn't find the page you're looking for. Back to Homepage