CVE-2024-1804 | Tutor LMS Plugin up to 2.2.0 on WordPress tutor_import_from_xml authorization

Inserito da Angelo Barbosa | Lug 26, 2024 | CVE

A vulnerability was found in Tutor LMS Plugin up to 2.2.0 on WordPress. It has been classified as critical. This affects the function tutor_import_from_xml. The manipulation leads to missing authorization.

This vulnerability is uniquely identified as CVE-2024-1804. It is possible to initiate the attack remotely. There is no exploit available.

CVE-2024-1804 | Tutor LMS Plugin up to 2.2.0 on WordPress tutor_import_from_xml authorization

Post correlati

CVE-2024-40786 | Apple macOS User Information information disclosure

CVE-2025-1848 | zj1983 zz up to 2024-8 /import_data_check url server-side request forgery

CVE-2024-36277 | FreeFrom App up to 1.3.4 on Android/iOS signature verification

CVE-2025-12216 | Azure Access BLU-IC2/BLU-IC4 up to 1.19.5 App insufficient or incomplete data removal within hardware component