How severe is CVE-2024-4222?

CVE-2024-4222 has a CVSS v3 score of 7.3 (HIGH).

CVE-2024-4222

Name: tutor_lms
Author: themeum

7.3HIGH

The Tutor LMS Pro plugin for WordPress is vulnerable to unauthorized access of data, modification of data, loss of data due to a missing capability check on multiple functions in all versions up to, a

发布于: 5/16/2024更新于: 1/22/2025

描述

The Tutor LMS Pro plugin for WordPress is vulnerable to unauthorized access of data, modification of data, loss of data due to a missing capability check on multiple functions in all versions up to, and including, 2.7.0. This makes it possible for unauthenticated attackers to add, modify, or delete user meta and plugin options.

AI分析AI驱动

受影响产品

themeumtutor_lms

参考资料

https://www.themeum.com/product/tutor-lms/
Product
https://www.wordfence.com/threat-intel/vulnerabilities/id/942fffb6-2719-4b70-9759-21b2d50002c5?source=cve
Third Party Advisory
https://www.themeum.com/product/tutor-lms/
Product
https://www.wordfence.com/threat-intel/vulnerabilities/id/942fffb6-2719-4b70-9759-21b2d50002c5?source=cve
Third Party Advisory