WordPress plugin MasterStudy LMS 跨站请求伪造漏洞

WordPress and WordPress plugin are both products of the WordPress Foundation.WordPress is a blogging platform developed using the PHP language. The platform supports setting up personal blog sites on servers with PHP and MySQL.WordPress plugin is an application plugin. A cross-site request forger...

CVE-2024-37269

Missing Authorization vulnerability in StylemixThemes Masterstudy Elementor Widgets allows Exploiting Incorrectly Configured Access Control Security Levels.This issue affects Masterstudy Elementor Widgets: from n/a through 1.2.2...

CVE-2024-37269 WordPress Masterstudy Elementor Widgets plugin <= 1.2.2 - Unauthenticated Broken Access Control vulnerability

Missing Authorization vulnerability in StylemixThemes Masterstudy Elementor Widgets allows Exploiting Incorrectly Configured Access Control Security Levels.This issue affects Masterstudy Elementor Widgets: from n/a through 1.2.2...

CVE-2024-37269

CVE-2024-37269 describes a Missing Authorization flaw in the WordPress plugin Masterstudy Elementor Widgets up to version 1.2.2 . The vulnerability is reported as an unauthenticated/broken access control issue, meaning an attacker could access restricted data or functions without credentials, as ...

CVE-2024-37094

Missing Authorization vulnerability in StylemixThemes MasterStudy LMS allows Exploiting Incorrectly Configured Access Control Security Levels. This issue affects MasterStudy LMS: from n/a through 3.2.12...

CVE-2024-37094

Missing Authorization vulnerability in StylemixThemes MasterStudy LMS allows Exploiting Incorrectly Configured Access Control Security Levels. This issue affects MasterStudy LMS: from n/a through 3.2.12...

CVE-2024-37094

CVE-2024-37094 is a Missing Authorization (Broken Access Control) vulnerability in the WordPress MasterStudy LMS plugin, affecting versions up to 3.2.12. The connected sources describe a critical impact (C/H/I/A) with CVSS 3.1 scores indicating remote access, no user interaction required, and hig...

CVE-2024-37094 WordPress MasterStudy LMS plugin <= 3.2.12 - Broken Access Control vulnerability

Missing Authorization vulnerability in StylemixThemes MasterStudy LMS allows Exploiting Incorrectly Configured Access Control Security Levels. This issue affects MasterStudy LMS: from n/a through 3.2.12...

CVE-2024-37094 WordPress MasterStudy LMS plugin <= 3.2.12 - Broken Access Control vulnerability

Missing Authorization vulnerability in StylemixThemes MasterStudy LMS allows Exploiting Incorrectly Configured Access Control Security Levels. This issue affects MasterStudy LMS: from n/a through 3.2.12...

WordPress plugin MasterStudy LMS 安全漏洞

WordPress and WordPress plugin are both products of the WordPress Foundation.WordPress is a blogging platform developed using the PHP language. The platform supports personal blog sites on servers with PHP and MySQL.WordPress plugin is an application plugin. A security vulnerability exists in the...

PT-2024-27434 · Unknown · Masterstudy Elementor Widgets

Name of the Vulnerable Software and Affected Versions: Masterstudy Elementor Widgets versions 1.2.2 and earlier Description: The issue is related to a Missing Authorization vulnerability, which allows exploiting incorrectly configured access control security levels. Recommendations: For Masterstu...

WordPress plugin Masterstudy Elementor Widgets 安全漏洞

WordPress and WordPress plugin are both products of the WordPress Foundation.WordPress is a blogging platform developed using the PHP language. The platform supports setting up personal blog sites on servers with PHP and MySQL.WordPress plugin is an application plugin. A security vulnerability...

PT-2024-27292 · Unknown · Masterstudy Lms

Name of the Vulnerable Software and Affected Versions: MasterStudy LMS versions 3.2.12 and earlier Description: The issue is related to missing authorization, allowing exploitation due to incorrectly configured access control security levels. Recommendations: For MasterStudy LMS versions 3.2.12 a...

CVE-2024-43990

Insertion of Sensitive Information into Log File vulnerability in StylemixThemes Masterstudy LMS Starter.This issue affects Masterstudy LMS Starter: from n/a through 1.1.8...

CVE-2024-43990 WordPress Masterstudy LMS Starter theme <= 1.1.8 - Sensitive Data Exposure vulnerability

Insertion of Sensitive Information into Log File vulnerability in StylemixThemes Masterstudy LMS Starter.This issue affects Masterstudy LMS Starter: from n/a through 1.1.8...

CVE-2024-43990 WordPress Masterstudy LMS Starter theme <= 1.1.8 - Sensitive Data Exposure vulnerability

Insertion of Sensitive Information into Log File vulnerability in StylemixThemes Masterstudy LMS Starter.This issue affects Masterstudy LMS Starter: from n/a through 1.1.8...

CVE-2024-43990

CVE-2024-43990 (Masterstudy LMS Starter) describes an unauthenticated sensitive information exposure caused by insertion of data into log files. The vulnerability affects Masterstudy LMS Starter versions up to and including 1.1.8. Public sources in the Connected documents indicate this is a WordP...

PT-2024-30855 · Unknown · Masterstudy Lms Starter

Name of the Vulnerable Software and Affected Versions: Masterstudy LMS Starter versions 1.1.8 and below Description: The issue is related to the insertion of sensitive information into log files. This could potentially expose sensitive data. Recommendations: For Masterstudy LMS Starter versions...

WordPress plugin Masterstudy LMS Starter 日志信息泄露漏洞

WordPress and WordPress plugin are both products of the WordPress Foundation.WordPress is a blogging platform developed using the PHP language. The platform supports personal blog sites on PHP and MySQL servers.WordPress plugin is an application plugin. A log information disclosure vulnerability...

Wordpress MasterStudy Admin Account Creation

This module requires Metasploit: https://metasploit.com/download Current source: https://github.com/rapid7/metasploit-framework class MetasploitModule 'Wordpress MasterStudy Admin Account Creation', 'Description' = %q MasterStudy LMS, a WordPress plugin, prior to 2.7.6 is affected by a privilege...