Lucene search
K

7 matches found

EUVD
EUVD
added 2025/10/03 8:7 p.m.4 views

EUVD-2024-32829

Malicious code in bioql PyPI...

6.5CVSS6.5AI score0.00418EPSS
Exploits0References3
RedhatCVE
RedhatCVE
added 2025/05/23 8:47 a.m.6 views

CVE-2024-4279

The Tutor LMS – eLearning and online course solution plugin for WordPress is vulnerable to Insecure Direct Object Reference to Arbitrary Course Deletion in versions up to, and including, 2.7.0 via the 'tutorcoursedelete' function due to missing validation on a user controlled key. This can allow...

6.5CVSS5.9AI score0.00418EPSS
Exploits0References1
NVD
NVD
added 2024/05/16 6:15 a.m.14 views

CVE-2024-4279

The Tutor LMS – eLearning and online course solution plugin for WordPress is vulnerable to Insecure Direct Object Reference to Arbitrary Course Deletion in versions up to, and including, 2.7.0 via the 'tutorcoursedelete' function due to missing validation on a user controlled key. This can allow...

6.5CVSS6.6AI score0.00418EPSS
Exploits0References3
Vulnrichment
Vulnrichment
added 2024/05/16 5:33 a.m.20 views

CVE-2024-4279 Tutor LMS – eLearning and online course solution <= 2.7.0 - Authenticated (Instructor+) Insecure Direct Object Reference to Arbitrary Course Deletion

The Tutor LMS – eLearning and online course solution plugin for WordPress is vulnerable to Insecure Direct Object Reference to Arbitrary Course Deletion in versions up to, and including, 2.7.0 via the 'tutorcoursedelete' function due to missing validation on a user controlled key. This can allow...

6.5CVSS6.7AI score0.00418EPSS
Exploits0References3
CVE
CVE
added 2024/05/16 5:33 a.m.57 views

CVE-2024-4279

Summary: CVE-2024-4279 affects Tutor LMS – eLearning and online course solution for WordPress. An insecure direct object reference vulnerability exists in the tutor_course_delete function caused by missing validation on a user-controlled key, enabling an authenticated attacker with Instructor-lev...

6.5CVSS6.5AI score0.00418EPSS
Exploits0References3Affected Software1
Cvelist
Cvelist
added 2024/05/16 5:33 a.m.22 views

CVE-2024-4279 Tutor LMS – eLearning and online course solution <= 2.7.0 - Authenticated (Instructor+) Insecure Direct Object Reference to Arbitrary Course Deletion

The Tutor LMS – eLearning and online course solution plugin for WordPress is vulnerable to Insecure Direct Object Reference to Arbitrary Course Deletion in versions up to, and including, 2.7.0 via the 'tutorcoursedelete' function due to missing validation on a user controlled key. This can allow...

6.5CVSS6.8AI score0.00418EPSS
Exploits0References3
WPVulnDB
WPVulnDB
added 2024/05/15 12:0 a.m.16 views

Tutor LMS – eLearning and online course solution < 2.7.1 - Authenticated (Instructor+) Insecure Direct Object Reference to Arbitrary Course Deletion

Description The Tutor LMS – eLearning and online course solution plugin for WordPress is vulnerable to Insecure Direct Object Reference to Arbitrary Course Deletion in versions up to, and including, 2.7.0 via the 'tutorcoursedelete' function due to missing validation on a user controlled key. Thi...

6.5CVSS6.6AI score0.00418EPSS
Exploits0References1Affected Software1
Rows per page
Query Builder