Tutor Lms Elementor Addons@* Security Vulnerabilities and Issues — Tutor Lms Elementor Addons@* CVE List

Lucene search

ThemeumTutor Lms Elementor Addons*

4 matches found

CVE•added 2024/03/27 7:15 a.m.•59 views

CVE-2024-29913

Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') vulnerability in Themeum Tutor LMS Elementor Addons allows Stored XSS.This issue affects Tutor LMS Elementor Addons: from n/a through 2.1.3.

6.5CVSS6.7AI score0.00133EPSS

CVE•added 2024/11/15 5:15 a.m.•45 views

CVE-2024-10897

The Tutor LMS Elementor Addons plugin for WordPress is vulnerable to unauthorized plugin installation due to a missing capability check on the install_etlms_dependency_plugin() function in all versions up to, and including, 2.1.5. This makes it possible for authenticated attackers, with Subscriber-...

4.3CVSS4.2AI score0.00054EPSS

CVE•added 2024/12/09 1:15 p.m.•45 views

CVE-2024-53816

Missing Authorization vulnerability in Themeum Tutor LMS Elementor Addons.This issue affects Tutor LMS Elementor Addons: from n/a through 2.1.5.

8.8CVSS4.7AI score0.00101EPSS

CVE•added 2024/08/20 6:15 a.m.•43 views

CVE-2024-5576

The Tutor LMS Elementor Addons plugin for WordPress is vulnerable to Stored Cross-Site Scripting via the 'course_carousel_skin' attribute within the plugin's Course Carousel widget in all versions up to, and including, 2.1.4 due to insufficient input sanitization and output escaping on user supplie...

6.4CVSS5.7AI score0.00134EPSS