Lucene search
+L

4 matches found

OSV
OSV
added 2023/12/15 4:15 p.m.25 views

CVE-2023-49829

Improper Neutralization of Input During Web Page Generation 'Cross-site Scripting' vulnerability in Themeum Tutor LMS – eLearning and online course solution allows Stored XSS.This issue affects Tutor LMS – eLearning and online course solution: from n/a through 2.2.4...

4.8CVSS6.7AI score0.00394EPSS
Exploits0References1
CVE
CVE
added 2023/12/15 3:30 p.m.47 views

CVE-2023-49829

CVE-2023-49829 pertains to the Tutor LMS WordPress plugin (Tutor LMS – eLearning and online course solution) and describes an issue where input is not properly sanitized during web page generation, allowing stored XSS. Affected versions are Tutor LMS

5.9CVSS6.6AI score0.00394EPSS
Exploits0References1Affected Software1
Cvelist
Cvelist
added 2023/12/15 3:30 p.m.26 views

CVE-2023-49829 WordPress Tutor LMS Plugin <= 2.2.4 is vulnerable to Cross Site Scripting (XSS)

Improper Neutralization of Input During Web Page Generation 'Cross-site Scripting' vulnerability in Themeum Tutor LMS – eLearning and online course solution allows Stored XSS.This issue affects Tutor LMS – eLearning and online course solution: from n/a through 2.2.4...

5.9CVSS5.9AI score0.00394EPSS
Exploits0References1
Patchstack
Patchstack
added 2023/12/05 12:0 a.m.15 views

WordPress Tutor LMS Plugin <= 2.2.4 is vulnerable to Cross Site Scripting (XSS)

Software Tutor LMS Type Plugin Vulnerable versions = 2.2.4 Fixed in 2.3.0 OWASP Top 10 A3: Injection Classification Cross Site Scripting XSS CVE CVE-2023-49829 Patch priority Low CVSS severity Low 5.9 Developer Claim ownership PSID 1f03fa341046 Credits emad Required privilege Administrator...

5.9CVSS6.5AI score0.00394EPSS
Exploits0References2Affected Software1
Rows per page
Query Builder