A vulnerability, which was classified as problematic , has been found in ThimPress LearnPress Plugin up to 4.3.6 on WordPress. Impacted is an unknown function. This manipulation causes cross site scripting. The identification of this vulnerability is CVE-2026-48865 . It is possible to initiate the attack remotely. There is no exploit available.