CVE-2026-1371 | Tutor LMS Plugin up to 3.9.5 on WordPress Coupon Details ajax_coupon_details authorization

Inserito da Angelo Barbosa | Feb 3, 2026 | CVE

A vulnerability described as problematic has been identified in Tutor LMS Plugin up to 3.9.5 on WordPress. This issue affects the function ajax_coupon_details of the component Coupon Details Handler. The manipulation results in missing authorization.

This vulnerability was named CVE-2026-1371. The attack may be performed from remote. There is no available exploit.

CVE-2026-1371 | Tutor LMS Plugin up to 3.9.5 on WordPress Coupon Details ajax_coupon_details authorization

Post correlati

CVE-2023-46840 | Xen Device access control

CVE-2024-22429 | Dell CPG BIOS prior 2.36.0 input validation (dsa-2024-020)

CVE-2024-8324 | ishitaka XO Slider Plugin up to 3.8.6 on WordPress get_slider cross site scripting

CVE-2024-38141 | Microsoft Windows up to Server 2022 23H2 Ancillary Function Driver for WinSock use after free