Skip to content
Features
Pricing
Solutions
Status
API Details
CLI Scanner
Vulnerabilities
Themes
WordPress
Plugins
Stats
Submit Vulnerabilities
Leaderboard
Resources
Blog
Enterprise Features
How to Install WPScan
WPScan Glossary
2024 Website Threat Report
Search
WordPress Plugin Vulnerabilities
Show Previous Letters
0-9
a
b
c
d
e
f
g
h
i
j
k
l
m
n
o
p
q
r
s
t
u
v
w
x
y
z
Show Next Letters
Slug
Published
Title
Slug
turn-off-comments-for-all-posts
Published
2022-04-26
Title
Turn off all comments <= 1.0 - Reflected Cross-Site Scripting
Slug
tutor
Published
2020-02-04
Title
Tutor LMS < 1.5.3 - Cross-Site Request Forgery (CSRF)
Slug
tutor
Published
2021-04-05
Title
Tutor LMS < 1.8.8 - Authenticated Local File Inclusion
Slug
tutor
Published
2021-08-09
Title
Tutor LMS < 1.9.6 - Reflected Cross-Site Scripting
Slug
tutor
Published
2021-03-15
Title
Tutor LMS < 1.7.7 - SQL Injection via tutor_mark_answer_as_correct
Slug
tutor
Published
2021-03-15
Title
Tutor LMS < 1.8.3 - SQL Injection via tutor_quiz_builder_get_answers_by_question
Slug
tutor
Published
2021-03-15
Title
Tutor LMS < 1.8.3 - SQL Injection via tutor_quiz_builder_get_question_form
Slug
tutor
Published
2021-03-15
Title
Tutor LMS < 1.7.7 - Unprotected AJAX including Privilege Escalation
Slug
tutor
Published
2021-03-15
Title
Tutor LMS < 1.7.7 - SQL Injection via tutor_place_rating
Slug
tutor
Published
2021-03-15
Title
Tutor LMS < 1.8.3 - SQL Injection via tutor_answering_quiz_question/get_answer_by_id
Slug
tutor
Published
2021-09-20
Title
Tutor LMS < 1.9.9 - Multiple Admin+ Stored Cross-Site Scripting
Slug
tutor
Published
2021-10-19
Title
Tutor LMS < 1.9.11 - Reflected Cross-Site Scripting
Slug
tutor
Published
2021-12-27
Title
Tutor LMS < 1.9.12 - Subscriber+ Stored Cross-Site Scripting
Slug
tutor
Published
2021-12-27
Title
Tutor LMS < 1.9.12 - Reflected Cross-Site Scripting
Slug
tutor
Published
2021-06-28
Title
Tutor LMS < 1.9.2 - Authenticated Stored Cross-Site Scripting (XSS)
Slug
tutor
Published
2022-01-10
Title
Tutor LMS < 1.9.13 - Reflected Cross-Site Scripting
Slug
tutor
Published
2022-08-22
Title
Tutor LMS < 2.0.9 - Reflected Cross-Site Scripting
Slug
tutor
Published
2022-09-26
Title
Tutor LMS < 2.0.10 - Admin+ Stored Cross-Site Scripting
Slug
tutor
Published
2023-01-12
Title
Tutor LMS < 2.0.10 - Reflected Cross-Site Scripting
Slug
tutor
Published
2023-06-12
Title
Tutor LMS < 2.2.1 - Unauthenticated Access to Tutor LMS Lesson Resources via REST API
Slug
tutor
Published
2023-09-25
Title
Tutor LMS < 2.3.0 - Subscriber+ Stored Cross-Site Scripting
Slug
tutor
Published
2023-05-30
Title
Tutor LMS < 2.2.1 - Student+ SQL Injection
Slug
tutor
Published
2023-05-30
Title
Tutor LMS < 2.2.0 - Unauthenticate SQL Injection
Slug
tutor
Published
2023-05-30
Title
Tutor LMS < 2.2.0 - Instructor+ SQL Injection
Slug
tutor
Published
2023-12-05
Title
Tutor LMS < 2.3.0 - Admin+ Stored XSS
Previous
45
46
47
48
49
Next
Subscribe
Subscribed
WPScan
Join 30,893 other subscribers
Sign me up
Already have a WordPress.com account?
Log in now.
WPScan
Subscribe
Subscribed
Sign up
Log in
Report this content
View site in Reader
Manage subscriptions
Collapse this bar
WPScan 