Lucene search
K

5 matches found

RedhatCVE
RedhatCVE
added 2025/05/23 5:31 a.m.8 views

CVE-2023-3345

The LMS by Masteriyo WordPress plugin before 1.6.8 does not have proper authorization in one some of its REST API endpoints, making it possible for any students to retrieve email addresses of other students...

6.5CVSS6.7AI score0.01926EPSS
Exploits2References1
OSV
OSV
added 2023/07/31 10:15 a.m.6 views

CVE-2023-3345

The LMS by Masteriyo WordPress plugin before 1.6.8 does not have proper authorization in one some of its REST API endpoints, making it possible for any students to retrieve email addresses of other students...

6.5CVSS7.3AI score0.01926EPSS
Exploits2References1
CVE
CVE
added 2023/07/31 9:37 a.m.2550 views

CVE-2023-3345

CVE-2023-3345 affects the LMS by Masteriyo WordPress plugin prior to 1.6.8. The plugin’s REST API endpoints lack proper authorization, enabling any student to retrieve other students’ email addresses (information disclosure). Root cause per connected details: insufficient access checks on REST ro...

6.5CVSS6.7AI score0.01926EPSS
Exploits2References1Affected Software1
Vulnrichment
Vulnrichment
added 2023/07/31 9:37 a.m.14 views

CVE-2023-3345 LMS by Masteriyo < 1.6.8 - Information Exposure

The LMS by Masteriyo WordPress plugin before 1.6.8 does not have proper authorization in one some of its REST API endpoints, making it possible for any students to retrieve email addresses of other students...

6.7AI score0.01926EPSS
Exploits2References1
Cvelist
Cvelist
added 2023/07/31 9:37 a.m.28 views

CVE-2023-3345 LMS by Masteriyo < 1.6.8 - Information Exposure

The LMS by Masteriyo WordPress plugin before 1.6.8 does not have proper authorization in one some of its REST API endpoints, making it possible for any students to retrieve email addresses of other students...

6.6AI score0.01926EPSS
Exploits2References1
Rows per page
Query Builder