CVE Search Engine - Security Vulnerabilities and Exploits Search Tool

show all

180 matches found

Wordpress Plugin Tutor LMS 1.5.3 - Cross-Site Request Forgery

A CSRF vulnerability in the Tutor LMS plugin before 1.5.3 for WordPress can result in an attacker approving themselves as an instructor and performing other malicious actions such as blocking legitimate instructors. id: CVE-2020-8615 info: name: Wordpress Plugin Tutor LMS 1.5.3 - Cross-Site Reque...

6.5CVSS6.6AI score0.0867EPSS

Exploits6References5

NVD•added 2026/04/15 11:16 a.m.•2 views

CVE-2026-40740

Missing Authorization vulnerability in Themeum Tutor LMS tutor allows Exploiting Incorrectly Configured Access Control Security Levels.This issue affects Tutor LMS: from n/a through = 3.9.7...

5.4CVSS0.00046EPSS

Exploits0References1

ATTACKERKB•added 2026/04/15 10:21 a.m.•0 views

CVE-2026-40740

Missing Authorization vulnerability in Themeum Tutor LMS tutor allows Exploiting Incorrectly Configured Access Control Security Levels.This issue affects Tutor LMS: from n/a through = 3.9.7...

5.8AI score0.00046EPSS

Exploits0References2

Positive Technologies•added 2026/04/15 12:0 a.m.•2 views

PT-2026-33044

Name of the Vulnerable Software and Affected Versions Themeum Tutor LMS versions prior to 3.9.8 Description An issue exists where missing authorization allows for the exploitation of incorrectly configured access control security levels. Recommendations Update to a version newer than 3.9.7...

5.4CVSS5.8AI score0.00046EPSS

Exploits0References4

RedhatCVE•added 2026/04/13 7:25 p.m.•0 views

CVE-2026-39638

Improper Neutralization of Input During Web Page Generation 'Cross-site Scripting' vulnerability in Themeum Qubely qubely allows Stored XSS.This issue affects Qubely: from n/a through = 1.8.14...

5.9CVSS5.8AI score0.00036EPSS

Exploits0References1

EUVD•added 2026/04/08 9:31 a.m.•0 views

EUVD-2026-20296

Improper Neutralization of Input During Web Page Generation 'Cross-site Scripting' vulnerability in Themeum Qubely qubely allows Stored XSS.This issue affects Qubely: from n/a through = 1.8.14...

5.9AI score0.00036EPSS

Exploits0References2

NVD•added 2026/04/08 9:16 a.m.•0 views

CVE-2026-39638

Improper Neutralization of Input During Web Page Generation 'Cross-site Scripting' vulnerability in Themeum Qubely qubely allows Stored XSS.This issue affects Qubely: from n/a through = 1.8.14...

5.9CVSS0.00036EPSS

Exploits0References1

ATTACKERKB•added 2026/04/08 8:30 a.m.•1 views

CVE-2026-39638

Improper Neutralization of Input During Web Page Generation 'Cross-site Scripting' vulnerability in Themeum Qubely qubely allows Stored XSS.This issue affects Qubely: from n/a through = 1.8.14...

5.9AI score0.00036EPSS

Exploits0References2

Positive Technologies•added 2026/04/08 12:0 a.m.•0 views

PT-2026-31203

CVE-2026-39638 Improper Neutralization of Input During Web Page Generation 'Cross-site Scripting' vulnerability in Themeum Qubely qubely allows Stored XSS.This issue affects Qubel… https://t.co/Tq611HF5Pc...

5.8AI score0.00036EPSS

Exploits0References3

RedhatCVE•added 2026/03/26 5:5 p.m.•0 views

CVE-2026-25406

Authentication Bypass Using an Alternate Path or Channel vulnerability in Themeum Tutor LMS Pro tutor-pro allows Authentication Abuse.This issue affects Tutor LMS Pro: from n/a through = 3.9.4...

8.1CVSS5.2AI score0.001EPSS

Exploits0References1

NVD•added 2026/03/25 5:16 p.m.•1 views

CVE-2026-25406

Authentication Bypass Using an Alternate Path or Channel vulnerability in Themeum Tutor LMS Pro tutor-pro allows Authentication Abuse.This issue affects Tutor LMS Pro: from n/a through = 3.9.4...

8.1CVSS0.001EPSS

Exploits0References1

ATTACKERKB•added 2026/03/25 4:14 p.m.•1 views

CVE-2026-25406

Authentication Bypass Using an Alternate Path or Channel vulnerability in Themeum Tutor LMS Pro tutor-pro allows Authentication Abuse.This issue affects Tutor LMS Pro: from n/a through = 3.9.8...

8.1CVSS5.2AI score0.001EPSS

Exploits0References2

EUVD•added 2026/03/19 9:30 a.m.•1 views

EUVD-2025-208856

Authorization Bypass Through User-Controlled Key vulnerability in Themeum Tutor LMS allows Exploiting Incorrectly Configured Access Control Security Levels.This issue affects Tutor LMS: from n/a through 3.9.4...

6.5CVSS5.8AI score0.00015EPSS

Exploits0References2

NVD•added 2026/03/19 9:16 a.m.•3 views

CVE-2025-32223

Authorization Bypass Through User-Controlled Key vulnerability in Themeum Tutor LMS tutor allows Exploiting Incorrectly Configured Access Control Security Levels.This issue affects Tutor LMS: from n/a through = 3.9.4...

6.5CVSS0.00015EPSS

Exploits0References1

CVE•added 2026/03/19 8:5 a.m.•3 views

CVE-2025-32223

CVE-2025-32223 is a Tutor LMS vulnerability: an authenticated (Subscriber+) Insecure Direct Object Reference in Tutor LMS

6.5CVSS5.9AI score0.00015EPSS

Exploits0References1

Positive Technologies•added 2026/03/19 12:0 a.m.•3 views

PT-2026-26265

6.5CVSS5.8AI score0.00015EPSS

Exploits0References4

RedhatCVE•added 2026/03/06 7:55 a.m.•1 views

CVE-2026-23799

Missing Authorization vulnerability in Themeum Tutor LMS tutor allows Exploiting Incorrectly Configured Access Control Security Levels.This issue affects Tutor LMS: from n/a through = 3.9.5...

6.5CVSS5.8AI score0.00042EPSS

Exploits0References1

EUVD•added 2026/03/05 6:30 a.m.•2 views

EUVD-2026-9596

Missing Authorization vulnerability in Themeum Tutor LMS tutor allows Exploiting Incorrectly Configured Access Control Security Levels.This issue affects Tutor LMS: from n/a through = 3.9.5...

5.9AI score0.00042EPSS

Exploits0References2

NVD•added 2026/03/05 6:16 a.m.•1 views

CVE-2026-23799

Missing Authorization vulnerability in Themeum Tutor LMS tutor allows Exploiting Incorrectly Configured Access Control Security Levels.This issue affects Tutor LMS: from n/a through = 3.9.5...

6.5CVSS0.00042EPSS

Exploits0References1

ATTACKERKB•added 2026/03/05 5:53 a.m.•1 views

CVE-2026-23799

Missing Authorization vulnerability in Themeum Tutor LMS tutor allows Exploiting Incorrectly Configured Access Control Security Levels.This issue affects Tutor LMS: from n/a through = 3.9.5...

5.9AI score0.00042EPSS

Exploits0References2

Rows per page

Query Builder

Family

Bulletin Type

Min CVSS Score

Date

Order by