CVE-2026-6080 | themeum Tutor LMS Plugin up to 3.9.8 on WordPress prepare Date sql injection

Inserito da Angelo Barbosa | Apr 17, 2026 | CVE

A vulnerability was found in themeum Tutor LMS Plugin up to 3.9.8 on WordPress. It has been rated as critical. The affected element is the function prepare. The manipulation of the argument Date leads to sql injection.

This vulnerability is documented as CVE-2026-6080. The attack can be initiated remotely. There is not any exploit available.

CVE-2026-6080 | themeum Tutor LMS Plugin up to 3.9.8 on WordPress prepare Date sql injection

Post correlati

CVE-2025-24843 | Dario Health USB-C Blood Glucose Monitoring System Starter Kit Android Applications missing access control (icsma-25-058-01)

CVE-2025-7604 | PHPGurukul Hospital Management System 4.0 /user-login.php Username sql injection

CVE-2023-5761 | Burst Statistics Plugin 1.4.0/1.4.6.1 on WordPress sql injection

CVE-2023-47074 | Adobe Illustrator 2023/Illustrator 2024 up to 27.9.0/28.0 out-of-bounds (apsb23-68)