WordPress Plugin Vulnerabilities

Tutor LMS < 1.8.8 - Authenticated Local File Inclusion

Description

The plugin is affected by a local file inclusion vulnerability through the maliciously constructed sub_page parameter of the plugin's Tools, allowing high privilege users to include any local php file

Proof of Concept

Affects Plugins

Plugin icon
tutor
Fixed in 1.8.8

References

CVE
CVE-2021-24242

Classification

Type
LFI
OWASP top 10
A1: Injection
CWE
CWE-22
CVSS
4.9 (medium)

Miscellaneous

Original Researcher
sasa
Submitter
sasa
Verified
Yes
WPVDB ID
20f3e63a-31d8-49a0-b4ef-209749feff5c

Timeline

Publicly Published
2021-04-05 (about 4 years ago)
Added
2021-04-05 (about 4 years ago)
Last Updated
2021-04-07 (about 4 years ago)

Other

Published
Title
Published
2025-09-16
Title
Developer Loggers for Simple History < 0.5.1 - Authenticated (Admin+) Local File Inclusion
Published
2023-12-26
Title
Ultimate Addons for Beaver Builder < 1.35.14 - Contributor+ Arbitrary File Download
Published
2025-04-17
Title
Avatar <= 0.1.4 - Authenticated (Subscriber+) Arbitrary File Deletion
Published
2023-12-15
Title
MW WP Form < 5.0.4 - Improper Limitation of File Name to Unauthenticated Arbitrary File Deletion
Published
2024-05-06
Title
Startklar Elementor Addons < 1.7.14 - Unauthenticated Arbitrary File Deletion