CVE ID :CVE-2021-47975 Published : May 16, 2026, 3:26 p.m. | 32 minutes ago Description :WP Learn Manager 1.1.2 contains a stored cross-site scripting vulnerability that allows unauthenticated attackers to inject malicious scripts through the fieldtitle parameter. Attackers can submit POST requests to the jslm_fieldordering page with XSS payloads in the fieldtitle field to execute arbitrary JavaScript when administrators view the field ordering interface. Severity: 7.2 | HIGH Visit the link for more details, such as CVSS details, affected products, timeline, and more...