CVE-2024-10393 | themeum Tutor LMS Plugin up to 2.7.6 on WordPress users_can_register access control

Inserito da Angelo Barbosa | Nov 21, 2024 | CVE

A vulnerability classified as critical has been found in themeum Tutor LMS Plugin up to 2.7.6 on WordPress. Affected is the function users_can_register. The manipulation leads to improper access controls.

This vulnerability is traded as CVE-2024-10393. It is possible to launch the attack remotely. There is no exploit available.

CVE-2024-10393 | themeum Tutor LMS Plugin up to 2.7.6 on WordPress users_can_register access control

Post correlati

CVE-2024-45764 | Dell Enterprise SONiC OS up to 4.1.5/4.2.1 missing critical step in authentication (dsa-2024-449)

CVE-2024-25392 | RT-Thread up to 5.0.2 var_export.c out-of-bounds (Issue 8290)

CVE-2024-49279 | TipTopPress Hyperlink Group Block Plugin up to 1.17.5 on WordPress cross site scripting

CVE-2024-24330 | Totolink A3300R 17.1cu.643_B20200521 setRemoteCfg enable command injection