CVE-2024-3994 | Tutor LMS Plugin up to 2.6.2 on WordPress Shortcode tutor_instructor_list cross site scripting

Inserito da Angelo Barbosa | Apr 25, 2024 | CVE

A vulnerability, which was classified as problematic, has been found in Tutor LMS Plugin up to 2.6.2 on WordPress. Affected by this issue is the function tutor_instructor_list of the component Shortcode Handler. The manipulation leads to cross site scripting.

This vulnerability is handled as CVE-2024-3994. The attack may be launched remotely. There is no exploit available.

CVE-2024-3994 | Tutor LMS Plugin up to 2.6.2 on WordPress Shortcode tutor_instructor_list cross site scripting

Post correlati

CVE-2024-38809 | Vmware Spring Framework up to 5.3.37/6.0.22/6.1.11 Conditional HTTP Request ETags denial of service

CVE-2023-6923 | Matomo Plugin up to 4.15.3 on WordPress idsite cross site scripting

CVE-2024-27963 | Crisp Plugin up to 0.44 on WordPress cross site scripting

CVE-2024-10266 | Premium Addons for Elementor Plugin up to 4.10.60 on WordPress Video Box Widget cross site scripting