CVE-2025-4800 | MasterStudy LMS Pro Plugin up to 4.7.0 on WordPress stm_lms_add_assignment_attachment unrestricted upload

Inserito da Angelo Barbosa | Mag 27, 2025 | CVE

A vulnerability was found in MasterStudy LMS Pro Plugin up to 4.7.0 on WordPress. It has been rated as critical. This issue affects the function stm_lms_add_assignment_attachment. The manipulation leads to unrestricted upload.

The identification of this vulnerability is CVE-2025-4800. The attack may be initiated remotely. There is no exploit available.

CVE-2025-4800 | MasterStudy LMS Pro Plugin up to 4.7.0 on WordPress stm_lms_add_assignment_attachment unrestricted upload

Post correlati

CVE-2024-7620 | Customizer Export Import Plugin up to 0.9.7 on WordPress Setting Import unrestricted upload

CVE-2025-6201 | Pixel Manager for WooCommerce Plugin up to 1.49.0 on WordPress Shortcode cross site scripting

CVE-2024-41089 | Linux Kernel up to 6.9.7 nv17_tv_get_hd_modes null pointer dereference

CVE-2025-22137 | stonith404 pingvin-share up to 1.3.x HTTP POST Request improper authentication (GHSA-rjwx-p44f-mcrv)