Search Results (123 CVEs found)

CVE Vendors Products Updated CVSS v3.1
CVE-2020-8615 1 Themeum 1 Tutor Lms 2024-11-21 6.5 Medium
A CSRF vulnerability in the Tutor LMS plugin before 1.5.3 for WordPress can result in an attacker approving themselves as an instructor and performing other malicious actions (such as blocking legitimate instructors).
CVE-2024-43937 1 Themeum 1 Wp Crowdfunding 2024-11-08 6.4 Medium
Missing Authorization vulnerability in Themeum WP Crowdfunding allows Exploiting Incorrectly Configured Access Control Security Levels.This issue affects WP Crowdfunding: from n/a through 2.1.10.
CVE-2024-39645 1 Themeum 1 Tutor Lms 2024-09-18 5.4 Medium
Cross-Site Request Forgery (CSRF) vulnerability in Themeum Tutor LMS.This issue affects Tutor LMS: from n/a through 2.7.2.