Vulnerability Information
Although we use advanced large model technology, its output may still contain inaccurate or outdated information.Shenlong tries to ensure data accuracy, but please verify and judge based on the actual situation.
Vulnerability Title
Tutor LMS < 1.7.7 - Unprotected AJAX including Privilege Escalation
Vulnerability Description
Several AJAX endpoints in the Tutor LMS – eLearning and online course solution WordPress plugin before 1.7.7 were unprotected, allowing students to modify course information and elevate their privileges among many other actions.
CVSS Information
N/A
Vulnerability Type
授权机制缺失
Vulnerability Title
WordPress eLearning and online course solution 安全漏洞
Vulnerability Description
WordPress是Wordpress基金会的一套使用PHP语言开发的博客平台。该平台支持在PHP和MySQL的服务器上架设个人博客网站。WordPress 插件是WordPress开源的一个应用插件。 eLearning and online course solution WordPress plugin before 1.7.7 存在安全漏洞,攻击者可利用该漏洞提高他们的特权。
CVSS Information
N/A
Vulnerability Type
N/A