Lucene search
K

8 matches found

RedhatCVE
RedhatCVE
added 2026/06/05 7:35 p.m.11 views

CVE-2026-5167

The Masteriyo LMS – Online Course Builder for eLearning, LMS & Education plugin for WordPress is vulnerable to Authorization Bypass Through User-Controlled Key in versions up to and including 2.1.7. This is due to insufficient webhook signature verification in the handlewebhook function. The...

5.3CVSS5.6AI score0.00375EPSS
Exploits0References1
EUVD
EUVD
added 2026/04/08 9:31 a.m.26 views

EUVD-2026-20117

The Masteriyo LMS – Online Course Builder for eLearning, LMS & Education plugin for WordPress is vulnerable to Authorization Bypass Through User-Controlled Key in versions up to and including 2.1.7. This is due to insufficient webhook signature verification in the handlewebhook function. The...

5.3CVSS6AI score0.00375EPSS
Exploits0References7
NVD
NVD
added 2026/04/08 7:16 a.m.14 views

CVE-2026-5167

The Masteriyo LMS – Online Course Builder for eLearning, LMS & Education plugin for WordPress is vulnerable to Authorization Bypass Through User-Controlled Key in versions up to and including 2.1.7. This is due to insufficient webhook signature verification in the handlewebhook function. The...

5.3CVSS0.00375EPSS
Exploits0References6
Positive Technologies
Positive Technologies
added 2026/04/08 12:0 a.m.21 views

PT-2026-31102

Name of the Vulnerable Software and Affected Versions Masteriyo LMS – Online Course Builder for eLearning, LMS & Education plugin for WordPress versions up to and including 2.1.7 Description The Masteriyo LMS plugin is affected by an authorization bypass issue. Insufficient webhook signature...

5.3CVSS5.8AI score0.00375EPSS
Exploits0References9
CNNVD
CNNVD
added 2024/06/11 12:0 a.m.4 views

Aimeos Security Breach

Aimeos is an open source e-commerce framework for online stores open-sourced by Aimeos. A security vulnerability exists in Aimeos versions prior to 2020.10.27, 2021.10.21, 2022.10.12, 2023.10.14, and 2024.04.5, which stems from digital downloadable content sold in an online store that can be...

5.3CVSS6.7AI score0.0055EPSS
Exploits0References8
Microsoft Malware Protection
Microsoft Malware Protection
added 2022/06/30 2:0 p.m.20 views

Toll fraud malware: How an Android application can drain your wallet

Toll fraud malware, a subcategory of billing fraud in which malicious applications subscribe users to premium services without their knowledge or consent, is one of the most prevalent types of Android malware – and it continues to evolve. Compared to other subcategories of billing fraud, which...

6.8AI score
Exploits0
Microsoft Secure
Microsoft Secure
added 2022/06/30 2:0 p.m.27 views

Toll fraud malware: How an Android application can drain your wallet

Toll fraud malware, a subcategory of billing fraud in which malicious applications subscribe users to premium services without their knowledge or consent, is one of the most prevalent types of Android malware – and it continues to evolve. Compared to other subcategories of billing fraud, which...

6.8AI score
Exploits0
CNVD
CNVD
added 2019/08/28 12:0 a.m.2 views

WordPress post-pay-counter plugin injection vulnerability

WordPress is the WordPress Foundation's set of blogging platform using PHP language development. The platform supports PHP and MySQL servers to set up a personal blog site. post-pay-counter is used in one of the online paid content billing, management plug-ins. An injection vulnerability exists i...

9.8CVSS7.1AI score0.02072EPSS
Exploits0References1
Rows per page
Query Builder