ByteOS Network

Kodezen LLC

Source -

CNA

BOS Name -

N/A

CNA CVEs -

ADP CVEs -

CISA CVEs -

NVD CVEs -

2Vulnerabilities found

CVE-2026-25372

Assigner-Patchstack

View Details

Assigner-Patchstack

CVSS Score-6.5||MEDIUM

EPSS-0.03% / 7.18%

7 Day CHG~0.00%

Published-19 Feb, 2026 | 08:27

Updated-19 Feb, 2026 | 20:25

WordPress Academy LMS plugin <= 3.5.3 - Broken Access Control vulnerability

Missing Authorization vulnerability in Kodezen LLC Academy LMS academy allows Exploiting Incorrectly Configured Access Control Security Levels.This issue affects Academy LMS: from n/a through <= 3.5.3.

Vendor-Kodezen LLC

Product-Academy LMS

CWE ID-CWE-862

Missing Authorization

CVE-2025-68527

Assigner-Patchstack

View Details

Assigner-Patchstack

CVSS Score-5.4||MEDIUM

EPSS-0.03% / 9.80%

7 Day CHG~0.00%

Published-24 Dec, 2025 | 12:31

Updated-20 Jan, 2026 | 15:19

WordPress Academy LMS plugin <= 3.4.0 - Cross Site Scripting (XSS) vulnerability

Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') vulnerability in Kodezen LLC Academy LMS academy allows Stored XSS.This issue affects Academy LMS: from n/a through <= 3.4.0.

Vendor-Kodezen LLC

Product-Academy LMS

CWE ID-CWE-79

Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting')