CVE Catalog

CVE-2025-60085

HighCVSS 8.1
Published: Updated: Translated: NVD NIST

Exploitation Probability (EPSS)

Low risk
0.42%

34th percentile — higher than 34% of all known CVEs

Summary

There is a vulnerability in Learnify versions up to 1.15.0 that allows unauthenticated local file inclusion.

Risk Assessment

An attacker could exploit this vulnerability to access sensitive files on the server, potentially leading to data exposure.

Recommendation

It is recommended to upgrade to the latest version of Learnify to mitigate this vulnerability.

Original NVD description (English source)

Unauthenticated Local File Inclusion in Learnify <= 1.15.0 versions.

Vulnerability data from NVD (NIST) · CISA KEV · EPSS