Lucene search
CVE-2024-4279
The Tutor LMS plugin for WordPress allows authenticated attackers to delete any cours
Show more
| Reporter | Title | Published | Views | Family All 6 |
|---|---|---|---|---|
 | CVE-2024-4279 Tutor LMS – eLearning and online course solution <= 2.7.0 - Authenticated (Instructor+) Insecure Direct Object Reference to Arbitrary Course Deletion | 16 May 202405:33 | – | vulnrichment |
 | CVE-2024-4279 | 16 May 202406:15 | – | nvd |
 | WordPress Tutor LMS Plugin <= 2.7.0 is vulnerable to Insecure Direct Object References (IDOR) | 16 May 202400:00 | – | patchstack |
 | CVE-2024-4279 Tutor LMS – eLearning and online course solution <= 2.7.0 - Authenticated (Instructor+) Insecure Direct Object Reference to Arbitrary Course Deletion | 16 May 202405:33 | – | cvelist |
 | Tutor LMS – eLearning and online course solution < 2.7.1 - Authenticated (Instructor+) Insecure Direct Object Reference to Arbitrary Course Deletion | 15 May 202400:00 | – | wpvulndb |
 | Wordfence Intelligence Weekly WordPress Vulnerability Report (May 13, 2024 to May 19, 2024) | 23 May 202415:00 | – | wordfence |
[
{
"vendor": "themeum",
"product": "Tutor LMS – eLearning and online course solution",
"versions": [
{
"version": "*",
"status": "affected",
"lessThanOrEqual": "2.7.0",
"versionType": "semver"
}
],
"defaultStatus": "unaffected"
}
]Transform Your Security Services
Elevate your offerings with Vulners' advanced Vulnerability Intelligence. Contact us for a demo and discover the difference comprehensive, actionable intelligence can make in your security strategy.
Book a live demo16 May 2024 06:15Current
6.5Medium risk
Vulners AI Score6.5
CVSS36.5
EPSS0.00054
SSVC