{"vulnerability": "cve-2026-12153", "sightings": [{"uuid": "0b66bea6-ae4f-4b2f-9f7e-9f68e2c0f613", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2026-12153", "type": "seen", "source": "https://bsky.app/profile/stackflag.bsky.social/post/3mq4ghq435q25", "content": "CVE-2026-12153 - wp learn manager\nThe WP Learn Manager plugin for WordPress has a security flaw that allows anyone to install and activate plugins without permission. This could lead to malicious plugins being added\u2026\n\nToo many irrelevant or confusing CVEs? Use stackflag.com\n\n#rabilal #CVE #infosec", "creation_timestamp": "2026-07-08T05:52:04.854271Z"}, {"uuid": "2f8d158b-a70b-4d0d-a2b7-cead66e0e358", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2026-12153", "type": "seen", "source": "https://bsky.app/profile/cve.skyfleet.blue/post/3mq4pajsdsu2t", "content": "CVE-2026-12153 - WP Learn Manager\nCVE ID : CVE-2026-12153\n \n Published : July 8, 2026, 6:16 a.m. | 1\u00a0hour, 32\u00a0minutes ago\n \n Description : The WP Learn Manager plugin for WordPress is vulnerable to authorization bypass in all versions up to, and including, 1.1.8. This is due t...", "creation_timestamp": "2026-07-08T08:29:12.902577Z"}, {"uuid": "2f452d08-020d-4979-9691-db885dc05155", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2026-12153", "type": "seen", "source": "https://bsky.app/profile/pulse-wp.com/post/3mq6dc6rxjg2d", "content": "CVE-2026-12153. CVSS 9.8. WP Learn Manager lets any visitor install arbitrary plugins without touching login.\n\nYour site becomes a plugin installer for attackers.\n\nUpdate to 1.1.8 now.\n\nScan your WordPress site: pulse-wp.com\n#WordPress #CVE #CyberSecurity", "creation_timestamp": "2026-07-09T00:00:37.054654Z"}]}