CVE-2024-1128 | Tutor LMS Plugin up to 2.6.0 on WordPress Q/A cross site scripting

Posted by Angelo Barbosa | Feb 20, 2024 | CVE

A vulnerability was found in Tutor LMS Plugin up to 2.6.0 on WordPress. It has been rated as problematic. Affected by this issue is some unknown functionality of the component Q/A. The manipulation leads to basic cross site scripting.

This vulnerability is handled as CVE-2024-1128. The attack may be launched remotely. There is no exploit available.

CVE-2024-1128 | Tutor LMS Plugin up to 2.6.0 on WordPress Q/A cross site scripting

Related Posts

CVE-2024-7570 | Ivanti Neurons for ITSM up to 2023.2/2023.3/2023.4 certificate validation

CVE-2023-44402 | Electron up to 23.3.13 data authenticity (GHSA-7m48-wc93-9g85)

CVE-2023-30970 | Palantir com.palantir.gotham:blackbird-witchcraft prior 104.30231003.9 Gotham Table Service absolute path traversal

CVE-2024-24245 | Canimaan ClamXAV up to 3.6.1 Helper Tool Local Privilege Escalation