Filtered by vendor Themeum
Subscribe
Total
26 CVE
CVE | Vendors | Products | Updated | CVSS v2 | CVSS v3 |
---|---|---|---|---|---|
CVE-2021-24242 | 1 Themeum | 1 Tutor Lms | 2024-02-04 | 5.5 MEDIUM | 3.8 LOW |
The Tutor LMS – eLearning and online course solution WordPress plugin before 1.8.8 is affected by a local file inclusion vulnerability through the maliciously constructed sub_page parameter of the plugin's Tools, allowing high privilege users to include any local php file | |||||
CVE-2021-24185 | 1 Themeum | 1 Tutor Lms | 2024-02-04 | 4.0 MEDIUM | 6.5 MEDIUM |
The tutor_place_rating AJAX action from the Tutor LMS – eLearning and online course solution WordPress plugin before 1.7.7 was vulnerable to blind and time based SQL injections that could be exploited by students. | |||||
CVE-2021-24184 | 1 Themeum | 1 Tutor Lms | 2024-02-04 | 6.5 MEDIUM | 8.8 HIGH |
Several AJAX endpoints in the Tutor LMS – eLearning and online course solution WordPress plugin before 1.7.7 were unprotected, allowing students to modify course information and elevate their privileges among many other actions. | |||||
CVE-2021-24186 | 1 Themeum | 1 Tutor Lms | 2024-02-04 | 4.0 MEDIUM | 6.5 MEDIUM |
The tutor_answering_quiz_question/get_answer_by_id function pair from the Tutor LMS – eLearning and online course solution WordPress plugin before 1.8.3 was vulnerable to UNION based SQL injection that could be exploited by students. | |||||
CVE-2021-24208 | 1 Themeum | 1 Wp Page Builder | 2024-02-04 | 3.5 LOW | 5.4 MEDIUM |
The editor of the WP Page Builder WordPress plugin before 1.2.4 allows lower-privileged users to insert unfiltered HTML, including JavaScript, into pages via the “Raw HTML” widget and the “Custom HTML” widgets (though the custom HTML widget requires sending a crafted request - it appears that this widget uses some form of client side validation but not server side validation), all of which are added via the “page_builder_data” parameter when performing the “wppb_page_save” AJAX action. It is also possible to insert malicious JavaScript via the “wppb_page_css” parameter (this can be done by closing out the style tag and opening a script tag) when performing the “wppb_page_save” AJAX action. | |||||
CVE-2020-8615 | 1 Themeum | 1 Tutor Lms | 2024-02-04 | 2.6 LOW | 6.5 MEDIUM |
A CSRF vulnerability in the Tutor LMS plugin before 1.5.3 for WordPress can result in an attacker approving themselves as an instructor and performing other malicious actions (such as blocking legitimate instructors). |