cve/CVE-2023-3133.md at 0a6a8ff98932ea5803a682e12b920b88c786f419

admin/cve

mirror of https://github.com/0xMarcio/cve.git synced 2025-05-05 18:27:17 +00:00

0xMarcio 4edef1e4c8 Update CVE sources 2024-05-28 08:49

2024-05-28 08:49:17 +00:00

Description

The Tutor LMS WordPress plugin before 2.2.1 does not implement adequate permission checks for REST API endpoints, allowing unauthenticated attackers to access information from Lessons that should not be publicly available.

POC

Reference

https://wpscan.com/vulnerability/3b6969a7-5cbc-4e16-8f27-5dde481237f5

Github

No PoCs found on GitHub currently.

795 B Raw Blame History

CVE-2023-3133

Description

POC

Reference

Github

795 B

Raw Blame History