CVE-2025-4800 | MasterStudy LMS Pro Plugin up to 4.7.0 on WordPress stm_lms_add_assignment_attachment unrestricted upload

Inserito da Angelo Barbosa | Mag 27, 2025 | CVE

A vulnerability was found in MasterStudy LMS Pro Plugin up to 4.7.0 on WordPress. It has been rated as critical. This issue affects the function stm_lms_add_assignment_attachment. The manipulation leads to unrestricted upload.

The identification of this vulnerability is CVE-2025-4800. The attack may be initiated remotely. There is no exploit available.

CVE-2025-4800 | MasterStudy LMS Pro Plugin up to 4.7.0 on WordPress stm_lms_add_assignment_attachment unrestricted upload

Post correlati

CVE-2025-23606 | Calendi Plugin up to 1.1.1 on WordPress cross site scripting

CVE-2024-9346 | Embed Videos and Respect Privacy Plugin up to 1.2 on WordPress cross site scripting

CVE-2024-57429 | PHPJabbers Cinema Booking System 2.0 pjActionUpdate cross-site request forgery

CVE-2024-29509 | Artifex Ghostscript up to 10.2.x PDFPassword heap-based overflow