Lucene search
K

7 matches found

RedhatCVE
RedhatCVE
added 2026/01/09 12:31 p.m.16 views

CVE-2023-4278

The MasterStudy LMS WordPress Plugin WordPress plugin before 3.0.18 does not have proper checks in place during registration allowing anyone to register on the site as an instructor. They can then add courses and/or posts...

7.5CVSS6.5AI score0.03495EPSS
Exploits6References1
Packet Storm
Packet Storm
added 2023/10/10 12:0 a.m.490 views

WordPress Masterstudy LMS 3.0.17 Account Creation

Exploit Title: Wordpress Plugin Masterstudy LMS - 3.0.17 - Unauthenticated Instructor Account Creation Google Dork: inurl:/user-public-account Date: 2023-09-04 Exploit Author: Revan Arifio Vendor Homepage: https:/.org/plugins/masterstudy-lms-learning-management-system/ Version: | | \ / | | / /| |...

7.5CVSS7.1AI score0.03495EPSS
Exploits6
0day.today
0day.today
added 2023/10/09 12:0 a.m.514 views

Wordpress Masterstudy LMS Plugin - 3.0.17 - Unauthenticated Instructor Account Creation Exploit

Exploit Title: Wordpress Plugin Masterstudy LMS - 3.0.17 - Unauthenticated Instructor Account Creation Google Dork: inurl:/user-public-account Exploit Author: Revan Arifio Vendor Homepage: https:/.org/plugins/masterstudy-lms-learning-management-system/ Version: | | \ / | | / /| || / / | | |/ / / ...

7.5CVSS7.1AI score0.03495EPSS
Exploits6
Exploit DB
Exploit DB
added 2023/10/09 12:0 a.m.367 views

Wordpress Plugin Masterstudy LMS - 3.0.17 - Unauthenticated Instructor Account Creation

Exploit Title: Wordpress Plugin Masterstudy LMS - 3.0.17 - Unauthenticated Instructor Account Creation Google Dork: inurl:/user-public-account Date: 2023-09-04 Exploit Author: Revan Arifio Vendor Homepage: https:/.org/plugins/masterstudy-lms-learning-management-system/ Version: | | \ / | | / /| |...

7.5CVSS7.6AI score0.03495EPSS
Exploits6
Patchstack
Patchstack
added 2023/09/12 12:0 a.m.38 views

WordPress MasterStudy LMS Plugin < 3.0.18 is vulnerable to Privilege Escalation

Software MasterStudy LMS Type Plugin Vulnerable versions 3.0.18 Fixed in 3.0.18 OWASP Top 10 A7: Identification and Authentication Failures Classification Privilege Escalation CVE CVE-2023-4278 Patch priority High CVSS severity High 7.3 Developer Claim ownership PSID 7e43b36b9353 Credits Revan...

7.5CVSS6.8AI score0.03495EPSS
Exploits6References4Affected Software1
NVD
NVD
added 2023/09/11 8:15 p.m.51 views

CVE-2023-4278

The MasterStudy LMS WordPress Plugin WordPress plugin before 3.0.18 does not have proper checks in place during registration allowing anyone to register on the site as an instructor. They can then add courses and/or posts...

7.5CVSS7.4AI score0.03495EPSS
Exploits6References2
Cvelist
Cvelist
added 2023/09/11 7:46 p.m.57 views

CVE-2023-4278 MasterStudy LMS < 3.0.18 - Unauthenticated Instructor Account Creation

The MasterStudy LMS WordPress Plugin WordPress plugin before 3.0.18 does not have proper checks in place during registration allowing anyone to register on the site as an instructor. They can then add courses and/or posts...

7.6AI score0.03495EPSS
Exploits6References2
Rows per page
Query Builder