Lucene search
Revan ArifioWPEX-ID:CB3173EC-9891-4BD8-9D05-24FE805B5235HistoryAug 21, 2023 - 12:00 a.m.
MasterStudy LMS < 3.0.18 - Unauthenticated Instructor Account Creation
2023-08-2100:00:00
Revan Arifio
24
masterstudy lms
unauthenticated
instructor account
creation
profiles settings
disable instructor registration
disable instructor pre-moderation
enroll course
register user
intercept request
exploit
0.087 Low
EPSS
Percentile
94.6%
Description The plugin does not have proper checks in place during registration allowing anyone to register on the site as an instructor. They can then add courses and/or posts.
1. Visit the Profiles Settings page for the plugin: MS LMS > LMS Settings > Profiles
2. Ensure that "Disable Instructor Registration" and "Disable Instructor Pre-moderation" are both "On". Save settings.
3. On a course page, click "Enroll Course"
4. Register a new user. Intercept the request, ex:
```
{"user_login":"user123","user_email":"[email protected]","user_password":"Password123","user_password_re":"Password123","become_instructor":"true","privacy_policy":true,"degree":"","expertize":"","auditory":"","additional":[],"additional_instructors":[],"profile_default_fields_for_register":[],"redirect_page":"http://site.com/user-account/"}
```
4. Change the `become_instructor` value to `true`
5. The account will have instructor privileges, allowing them to add new courses and publish blog posts for review.Related
packetstorm
packetstorm
WordPress Masterstudy LMS 3.0.17 Account Creation
2023-10-10 00:00:00
wpvulndb
wpvulndb
MasterStudy LMS < 3.0.18 - Unauthenticated Instructor Account Creation
2023-08-21 00:00:00
githubexploit
githubexploit
Exploit for CVE-2023-4278
2023-09-04 14:16:32
prion
prion
Design/Logic Flaw
2023-09-11 20:15:00
zdt
zdt
cve
cve
CVE-2023-4278
2023-09-11 20:15:11
cvelist
cvelist
nvd
nvd
CVE-2023-4278
2023-09-11 20:15:11
exploitdb
exploitdb
wordfence
wordfence