WordPress Plugin Vulnerabilities

Tutor LMS Pro < 2.7.1 - Missing Authorization to Privilege Escalation

Description

The Tutor LMS Pro plugin for WordPress is vulnerable to unauthorized access of data, modification of data, loss of data due to a missing capability check on the 'authenticate' function in all versions up to, and including, 2.7.0. This makes it possible for authenticated attackers, with subscriber-level permissions and above, to gain control of an existing administrator account.

Affects Plugins

Plugin icon
tutor-pro
Fixed in 2.7.1

References

CVE
CVE-2024-4351
URL
https://www.wordfence.com/threat-intel/vulnerabilities/id/59859583-49e5-4a80-8659-b9ca7ddc089d

Classification

Type
SQLI
OWASP top 10
A1: Injection
CWE
CWE-89
CVSS
8.8 (high)

Miscellaneous

Original Researcher
villu164
Verified
No
WPVDB ID
f85cecf7-e221-468f-87c3-f8256b17c531

Timeline

Publicly Published
2024-05-15 (about 1 year ago)
Added
2024-05-15 (about 1 year ago)
Last Updated
2024-05-15 (about 1 year ago)

Other

Published
Title
Published
2014-08-01
Title
MM Forms Community <= 1.2.3 - SQL Injection
Published
2024-03-26
Title
Slider by Supsystic < 1.8.11 - Authenticated (Admin+) SQL Injection
Published
2023-01-31
Title
GeoDirectory < 2.2.24 - Admin+ SQLi
Published
2022-11-07
Title
HTML Forms < 1.3.25 - Admin+ SQLi
Published
2011-02-08
Title
Cdnvote < 0.4.2 - Multiple SQL Injections