Lucene search
PRIOn knowledge basePRION:CVE-2023-4278HistorySep 11, 2023 - 8:15 p.m.
Design/Logic Flaw
2023-09-1120:15:00
PRIOn knowledge base
www.prio-n.com
17
logic flaw
masterstudy lms
wordpress plugin
registration
unauthorized registration
instructor
0.087 Low
EPSS
Percentile
94.6%
The MasterStudy LMS WordPress Plugin WordPress plugin before 3.0.18 does not have proper checks in place during registration allowing anyone to register on the site as an instructor. They can then add courses and/or posts.
| CPE | Name | Operator | Version |
|---|---|---|---|
| masterstudy_lms | lt | 3.0.18 |
Related
packetstorm
packetstorm
WordPress Masterstudy LMS 3.0.17 Account Creation
2023-10-10 00:00:00
githubexploit
githubexploit
Exploit for CVE-2023-4278
2023-09-04 14:16:32
wpvulndb
wpvulndb
MasterStudy LMS < 3.0.18 - Unauthenticated Instructor Account Creation
2023-08-21 00:00:00
zdt
zdt
cve
cve
CVE-2023-4278
2023-09-11 20:15:11
cvelist
cvelist
nvd
nvd
CVE-2023-4278
2023-09-11 20:15:11
wpexploit
wpexploit
MasterStudy LMS < 3.0.18 - Unauthenticated Instructor Account Creation
2023-08-21 00:00:00
exploitdb
exploitdb
wordfence
wordfence