Designthemes Lms vulnerabilities
2 known vulnerabilities affecting designthemes/lms.
Total CVEs
2
CISA KEV
0
Public exploits
0
Exploited in wild
0
Severity breakdown
CRITICAL1HIGH1
Vulnerabilities
Page 1 of 1
CVE-2025-52833P2CRITICALCVSS 9.3≤ 9.22025-07-04
CVE-2025-52833 [CRITICAL] CWE-89 CVE-2025-52833: Improper Neutralization of Special Elements used in an SQL Command ('SQL Injection') vulnerability i
Improper Neutralization of Special Elements used in an SQL Command ('SQL Injection') vulnerability in designthemes LMS lms allows SQL Injection.This issue affects LMS: from n/a through <= 9.2.
nvd
CVE-2025-52799P4HIGHCVSS 7.1≤ 9.22025-06-27
CVE-2025-52799 [HIGH] CWE-79 CVE-2025-52799: Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') vulnerability i
Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') vulnerability in designthemes LMS lms allows Reflected XSS.This issue affects LMS: from n/a through <= 9.2.
nvd