Known Vulnerabilities for Tutor Lms by Themeum

Listed below are 10 of the newest known vulnerabilities associated with the software "Tutor Lms" by "Themeum".

These CVEs are retrieved based on exact matches on listed software and vendor information (CPE data) as well as a keyword search to ensure the newest vulnerabilities with no officially listed software information are still displayed.

Data on known vulnerable versions is also displayed based on information from known CPEs

Known Vulnerabilities

CVE Shortened Description Severity Publish Date Last Modified
CVE-2021-24873 The Tutor LMS WordPress plugin before 1.9.11 does not sanitise and escape user input before outputting back in attributes in ... Not Provided 2021-11-23 2021-11-23
CVE-2021-24740 The Tutor LMS WordPress plugin before 1.9.9 does not escape some of its settings before outputting them in attributes, which ... Not Provided 2021-10-18 2021-10-18
CVE-2021-24455 The Tutor LMS – eLearning and online course solution WordPress plugin before 1.9.2 did not escape the Summary field of Anno... 5.4 - MEDIUM 2021-08-02 2021-08-10
CVE-2021-24242 The Tutor LMS – eLearning and online course solution WordPress plugin before 1.8.8 is affected by a local file inclusion vu... 3.8 - LOW 2021-04-22 2021-04-30
CVE-2021-24186 The tutor_answering_quiz_question/get_answer_by_id function pair from the Tutor LMS – eLearning and online course solution ... 6.5 - MEDIUM 2021-04-05 2021-04-09
CVE-2021-24185 The tutor_place_rating AJAX action from the Tutor LMS – eLearning and online course solution WordPress plugin before 1.7.7 ... 6.5 - MEDIUM 2021-04-05 2021-04-09
CVE-2021-24184 Several AJAX endpoints in the Tutor LMS – eLearning and online course solution WordPress plugin before 1.7.7 were unprotect... 8.8 - HIGH 2021-04-05 2021-04-09
CVE-2021-24183 The tutor_quiz_builder_get_question_form AJAX action from the Tutor LMS – eLearning and online course solution WordPress pl... 6.5 - MEDIUM 2021-04-05 2021-04-09
CVE-2021-24182 The tutor_quiz_builder_get_answers_by_question AJAX action from the Tutor LMS – eLearning and online course solution WordPr... 6.5 - MEDIUM 2021-04-05 2021-04-09
CVE-2021-24181 The tutor_mark_answer_as_correct AJAX action from the Tutor LMS – eLearning and online course solution WordPress plugin bef... 6.5 - MEDIUM 2021-04-05 2021-04-09

Known Affected Configurations (CPE V2.3)

Type Vendor Product Version Update Edition Language
ApplicationThemeumTutor Lms1.5.3AllAllAll
ApplicationThemeumTutor Lms1.5.2AllAllAll
ApplicationThemeumTutor Lms1.5.1AllAllAll
ApplicationThemeumTutor Lms1.5.0AllAllAll
ApplicationThemeumTutor Lms1.4.9AllAllAll
ApplicationThemeumTutor Lms1.4.8AllAllAll
ApplicationThemeumTutor Lms1.4.7AllAllAll
ApplicationThemeumTutor Lms1.4.6AllAllAll
ApplicationThemeumTutor Lms1.4.5AllAllAll
ApplicationThemeumTutor Lms1.4.4AllAllAll
ApplicationThemeumTutor Lms1.4.3AllAllAll
ApplicationThemeumTutor Lms1.4.2AllAllAll
ApplicationThemeumTutor Lms1.4.1AllAllAll
ApplicationThemeumTutor Lms1.4.0AllAllAll
ApplicationThemeumTutor Lms1.3.9AllAllAll
ApplicationThemeumTutor Lms1.3.8AllAllAll
ApplicationThemeumTutor Lms1.3.7AllAllAll
ApplicationThemeumTutor Lms1.3.6AllAllAll
ApplicationThemeumTutor Lms1.3.5AllAllAll
ApplicationThemeumTutor Lms1.3.4AllAllAll

Popular searches for Tutor Lms

Tutor LMS - Most Powerful WordPress LMS Plugin

www.themeum.com/product/tutor-lms

Tutor LMS - Most Powerful WordPress LMS Plugin Planning to launch an eLearning site? FREE download Tutor LMS " , the most powerful WordPress LMS S Q O plugin to kickstart your online classroom. Learning management system for all!

Plug-in (computing) WordPress Educational technology Learning management system E-commerce Online and offline Monetization Tutorial Website Download Content (media) London, Midland and Scottish Railway Tutor 2012 24 Hours of Le Mans WooCommerce Proprietary software Windows Phone Subscription business model Kickstarter Gateway (telecommunications)

Update Your Tutor LMS: CSRF Vulnerability Patched in Latest Version - Themeum

www.themeum.com/tutor-lms-updated-v1-5-3

Q MUpdate Your Tutor LMS: CSRF Vulnerability Patched in Latest Version - Themeum I G ERecently, the Astra Security team performed a security audit for the Tutor LMS j h f plugin. While the overall result was good, there was an issue with CSRF attack protection. And today Tutor LMS m k i has received a patch to fix this vulnerability. What Was the Issue? Researchers at Astra Security found Tutor LMS # ! version 1.5.2 and below,

Cross-site request forgery Vulnerability (computing) Patch (computing) Plug-in (computing) Computer security Information technology security audit 2012 24 Hours of Le Mans Astra (satellite) User (computing) Unicode Changelog Blog Security Cryptographic nonce Email Windows Phone Secure Shell 2013 24 Hours of Le Mans Security hacker London, Midland and Scottish Railway

© CVE.report 2021 Twitter Nitter Twitter Viewer |

Use of this information constitutes acceptance for use in an AS IS condition. There are NO warranties, implied or otherwise, with regard to this information or its use. Any use of this information is at the user's risk. It is the responsibility of user to evaluate the accuracy, completeness or usefulness of any information, opinion, advice or other content. EACH USER WILL BE SOLELY RESPONSIBLE FOR ANY consequences of his or her direct or indirect use of this web site. ALL WARRANTIES OF ANY KIND ARE EXPRESSLY DISCLAIMED. This site will NOT BE LIABLE FOR ANY DIRECT, INDIRECT or any other kind of loss.

CVE, CWE, and OVAL are registred trademarks of The MITRE Corporation and the authoritative source of CVE content is MITRE's CVE web site. This site includes MITRE data granted under the following license.

CVE.report and Source URL Uptime Status status.cve.report