Lucene search
+L

5 matches found

RedhatCVE
RedhatCVE
added 2025/02/05 5:27 a.m.18 views

CVE-2024-1512

The MasterStudy LMS WordPress Plugin – for Online Courses and Education plugin for WordPress is vulnerable to union based SQL Injection via the 'user' parameter of the /lms/stm-lms/order/items REST route in all versions up to, and including, 3.2.5 due to insufficient escaping on the user supplied...

9.8CVSS9.6AI score0.77729EPSS
Exploits1References1
GithubExploit
GithubExploit
added 2024/03/01 11:8 a.m.283 views

Exploit for SQL Injection in Stylemixthemes Masterstudy_Lms

CVE-2024-1512 Proof of Concept Vulnerability Overview CVE...

9.8CVSS9.9AI score0.77729EPSS
Exploits1
Patchstack
Patchstack
added 2024/02/19 12:0 a.m.20 views

WordPress MasterStudy LMS Plugin <= 3.2.5 is vulnerable to SQL Injection

Software MasterStudy LMS Type Plugin Vulnerable versions = 3.2.5 Fixed in 3.2.6 OWASP Top 10 A1: Injection Classification SQL Injection CVE CVE-2024-1512 Patch priority High CVSS severity High 9.3 Developer Claim ownership PSID e235479f4753 Credits Krzysztof Zając Required privilege Unauthenticat...

9.8CVSS7.2AI score0.77729EPSS
Exploits1References3Affected Software1
Vulnrichment
Vulnrichment
added 2024/02/17 7:36 a.m.20 views

CVE-2024-1512

The MasterStudy LMS WordPress Plugin – for Online Courses and Education plugin for WordPress is vulnerable to union based SQL Injection via the 'user' parameter of the /lms/stm-lms/order/items REST route in all versions up to, and including, 3.2.5 due to insufficient escaping on the user supplied...

9.8CVSS7.5AI score0.77729EPSS
Exploits1References2
CVE
CVE
added 2024/02/17 7:36 a.m.147 views

CVE-2024-1512

CVE-2024-1512 affects the MasterStudy LMS WordPress Plugin, all versions up to 3.2.5. The root cause is insufficient escaping and lack of proper SQL query preparation on the 'user' parameter of the /lms/stm-lms/order/items REST route, enabling union-based SQL injection. This allows unauthenticate...

9.8CVSS9.5AI score0.77729EPSS
Exploits1References2Affected Software1
Rows per page
Query Builder