HIGH
Kodezen LLC
CVE published 2026-06-17
CVE-2026-39598
CVE-2026-39598 is a high-severity vulnerability (CVSS Score: 8) in Academy LMS Pro, a learning management system plugin. The vulnerability allows unrestricted file uploads with dangerous types, potentially enabling attackers to upload web shells to the web server. This issue affects Academy LMS Pro versions from n/a to 3.5.2. The vulnerability was published on June 17, 2026, and last modified on the same day.