Goal Reached Thanks to every supporter — we hit 100%!

Goal: 1000 CNY · Raised: 1000 CNY

100.0%
Buy Us a Coffee
Vulnerability List
Clear Filters
Found 394 results
CVE IDTitleVendorProductSeverityCVSS ScorePublished AtAI Analysis
CVE-2024-2409 MasterStudy LMS <= 3.3.1 - Unauthenticated Privilege Escalation via stm_lms_register AJAX Action stylemixMasterStudy LMS WordPress Plugin – for Online Courses and Education Critical 9.8 2024-03-29 08:31:30 Deep Dive
CVE-2024-2411 MasterStudy LMS <= 3.3.0 - Unauthenticated Local File Inclusion via modal stylemixMasterStudy LMS WordPress Plugin – for Online Courses and Education Critical 9.8 2024-03-29 08:31:30 Deep Dive
CVE-2024-29913 WordPress Tutor LMS Elementor Addons plugin <= 2.1.3 - Cross Site Scripting (XSS) vulnerability ThemeumTutor LMS Elementor Addons Medium 6.5 2024-03-27 07:02:45 Deep Dive
CVE-2024-1751 Tutor LMS – eLearning and online course solution <= 2.6.1 - Authenticated (Subscriber+) SQL Injection themeumTutor LMS – eLearning and online course solution High 8.8 2024-03-13 15:27:26 Deep Dive
CVE-2024-0377 LifterLMS – WordPress LMS Plugin for eLearning <= 7.5.1 - Missing Authorization via process_review chrisbadgettLifterLMS – WP LMS for eLearning, Online Courses, & Quizzes Medium 5.3 2024-03-13 15:27:16 Deep Dive
CVE-2024-1505 Academy LMS – eLearning and online course solution for WordPress <= 1.9.19 - Authenticated (Subscriber+) Privilege Escalation kodezenAcademy LMS – WordPress LMS Plugin for Complete eLearning Solution High 8.8 2024-03-13 15:27:11 Deep Dive
CVE-2024-2106 MasterStudy LMS WordPress Plugin – for Online Courses and Education <= 3.2.10 - Basic Information Exposure via REST route stylemixMasterStudy LMS WordPress Plugin – for Online Courses and Education Medium 5.3 2024-03-13 15:26:40 Deep Dive
CVE-2024-1502 Tutor LMS – eLearning and online course solution <= 2.6.1 - Missing Authorization to Authenticated (Subscriber+) Arbitrary Post Deletion themeumTutor LMS – eLearning and online course solution Medium 5.4 2024-03-12 23:33:50 Deep Dive
CVE-2024-1503 Tutor LMS – eLearning and online course solution <= 2.6.1 - Cross-Site Request Forgery to Plugin Deactivation and Data Erase themeumTutor LMS – eLearning and online course solution Medium 4.3 2024-03-12 23:33:49 Deep Dive
CVE-2024-1133 Tutor LMS <= 2.6.0 - Missing Authorization themeumTutor LMS – eLearning and online course solution Medium 4.3 2024-02-20 18:56:49 Deep Dive
CVE-2024-1128 Tutor LMS <= 2.6.0 - Authenticated(Student+) HTML Injection via Q&A themeumTutor LMS – eLearning and online course solution Medium 5.4 2024-02-20 18:56:22 Deep Dive
CVE-2024-25974 Stored Cross-Site Scripting (XSS) within the Media Center Frentix GmbHOpenOlat LMS--2024-02-20 08:02:44 Deep Dive
CVE-2024-25973 Multiple Stored Cross-Site Scripting Vulnerabilities Frentix GmbHOpenOlat LMS--2024-02-20 08:00:37 Deep Dive
CVE-2024-1512 MasterStudy LMS WordPress Plugin – for Online Courses and Education <= 3.2.5 - Unauthenticated SQL Injection stylemixMasterStudy LMS WordPress Plugin – for Online Courses and Education Critical 9.8 2024-02-17 07:36:57 Deep Dive
CVE-2024-1439 Inadequate access control vulnerability in Moodle MoodleLMS Medium 6.5 2024-02-12 10:51:45 Deep Dive
CVE-2023-50875 WordPress Sensei LMS Plugin <= 4.17.0 is vulnerable to Cross Site Scripting (XSS) AutomatticSensei LMS – Online Courses, Quizzes, & Learning Medium 6.5 2024-02-12 06:50:04 Deep Dive
CVE-2024-1208 LearnDash LMS <= 4.10.2 - Sensitive Information Exposure via API StellarWPLearnDash LMS Medium 5.3 2024-02-05 21:21:58 Deep Dive
CVE-2024-1209 LearnDash LMS <= 4.10.1 - Sensitive Information Exposure via assignments StellarWPLearnDash LMS Medium 5.3 2024-02-05 21:21:49 Deep Dive
CVE-2024-1210 LearnDash LMS <= 4.10.1 - Sensitive Information Exposure via API StellarWPLearnDash LMS Medium 5.3 2024-02-05 21:21:46 Deep Dive
CVE-2023-6567 LearnPress <= 4.2.5.7 - Unauthenticated SQL Injection via order_by thimpressLearnPress – WordPress LMS Plugin for Create and Sell Online Courses Critical 9.8 2024-01-11 08:32:37 Deep Dive