0.001 Low
EPSS
Percentile
30.2%
Reflected Cross-Site Scripting (XSS) vulnerability discovered by Krzysztof Zając in WordPress Tutor LMS plugin (versions <= 1.9.11).
Update the WordPress Tutor LMS plugin to the latest available version (at least 1.9.12).
cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-25017
wordpress.org/plugins/tutor/#developers
wpscan.com/vulnerability/2d0c4872-a341-4974-926c-10b094a5d13c