Lucene search
PatchstackCVELIST:CVE-2023-25990HistoryNov 03, 2023 - 4:22 p.m.
CVE-2023-25990 WordPress Tutor LMS Plugin <= 2.1.10 is vulnerable to SQL Injection
2023-11-0316:22:46
CWE-89
Patchstack
www.cve.org
wordpress
tutor lms
sql injection
Improper Neutralization of Special Elements used in an SQL Command (βSQL Injectionβ) vulnerability in Themeum Tutor LMS allows SQL Injection.This issue affects Tutor LMS: from n/a through 2.1.10.
CNA Affected
[
{
"collectionURL": "https://wordpress.org/plugins",
"defaultStatus": "unaffected",
"packageName": "tutor",
"product": "Tutor LMS",
"vendor": "Themeum",
"versions": [
{
"changes": [
{
"at": "2.2.0",
"status": "unaffected"
}
],
"lessThanOrEqual": "2.1.10",
"status": "affected",
"version": "n/a",
"versionType": "custom"
}
]
}
]Related
cve
cve
CVE-2023-25990
2023-11-03 17:15:08
nvd
nvd
CVE-2023-25990
2023-11-03 17:15:08
prion
prion
Sql injection
2023-11-03 17:15:00
osv
osv
CVE-2023-25990
2023-11-03 17:15:08
wordfence
wordfence