Vulnerabilites related to Unknown - Tutor LMS – eLearning and online course solution
cve-2021-24186
Vulnerability from cvelistv5
Published
2021-04-05 18:27
Modified
2024-08-03 19:21
Severity ?
EPSS score ?
Summary
The tutor_answering_quiz_question/get_answer_by_id function pair from the Tutor LMS – eLearning and online course solution WordPress plugin before 1.8.3 was vulnerable to UNION based SQL injection that could be exploited by students.
References
| ▼ | URL | Tags |
|---|---|---|
| https://www.wordfence.com/blog/2021/03/several-vulnerabilities-patched-in-tutor-lms-plugin/ | x_refsource_MISC | |
| https://wpscan.com/vulnerability/5f5c0c6c-6f76-4366-b590-0aab557f8c60 | x_refsource_CONFIRM |
Impacted products
| Vendor | Product | Version | ||
|---|---|---|---|---|
| Unknown | Tutor LMS – eLearning and online course solution |
Version: 1.8.3 < 1.8.3 |
{ containers: { adp: [ { providerMetadata: { dateUpdated: "2024-08-03T19:21:18.629Z", orgId: "af854a3a-2127-422b-91ae-364da2661108", shortName: "CVE", }, references: [ { tags: [ "x_refsource_MISC", "x_transferred", ], url: "https://www.wordfence.com/blog/2021/03/several-vulnerabilities-patched-in-tutor-lms-plugin/", }, { tags: [ "x_refsource_CONFIRM", "x_transferred", ], url: "https://wpscan.com/vulnerability/5f5c0c6c-6f76-4366-b590-0aab557f8c60", }, ], title: "CVE Program Container", }, ], cna: { affected: [ { product: "Tutor LMS – eLearning and online course solution", vendor: "Unknown", versions: [ { lessThan: "1.8.3", status: "affected", version: "1.8.3", versionType: "custom", }, ], }, ], credits: [ { lang: "en", value: "Chloe Chamberland", }, ], descriptions: [ { lang: "en", value: "The tutor_answering_quiz_question/get_answer_by_id function pair from the Tutor LMS – eLearning and online course solution WordPress plugin before 1.8.3 was vulnerable to UNION based SQL injection that could be exploited by students.", }, ], problemTypes: [ { descriptions: [ { cweId: "CWE-89", description: "CWE-89 SQL Injection", lang: "en", type: "CWE", }, ], }, ], providerMetadata: { dateUpdated: "2021-04-05T18:27:45", orgId: "1bfdd5d7-9bf6-4a53-96ea-42e2716d7a81", shortName: "WPScan", }, references: [ { tags: [ "x_refsource_MISC", ], url: "https://www.wordfence.com/blog/2021/03/several-vulnerabilities-patched-in-tutor-lms-plugin/", }, { tags: [ "x_refsource_CONFIRM", ], url: "https://wpscan.com/vulnerability/5f5c0c6c-6f76-4366-b590-0aab557f8c60", }, ], source: { discovery: "UNKNOWN", }, title: "Tutor LMS < 1.8.3 - SQL Injection via tutor_answering_quiz_question/get_answer_by_id", x_generator: "WPScan CVE Generator", x_legacyV4Record: { CVE_data_meta: { ASSIGNER: "contact@wpscan.com", ID: "CVE-2021-24186", STATE: "PUBLIC", TITLE: "Tutor LMS < 1.8.3 - SQL Injection via tutor_answering_quiz_question/get_answer_by_id", }, affects: { vendor: { vendor_data: [ { product: { product_data: [ { product_name: "Tutor LMS – eLearning and online course solution", version: { version_data: [ { version_affected: "<", version_name: "1.8.3", version_value: "1.8.3", }, ], }, }, ], }, vendor_name: "Unknown", }, ], }, }, credit: [ { lang: "eng", value: "Chloe Chamberland", }, ], data_format: "MITRE", data_type: "CVE", data_version: "4.0", description: { description_data: [ { lang: "eng", value: "The tutor_answering_quiz_question/get_answer_by_id function pair from the Tutor LMS – eLearning and online course solution WordPress plugin before 1.8.3 was vulnerable to UNION based SQL injection that could be exploited by students.", }, ], }, generator: "WPScan CVE Generator", problemtype: { problemtype_data: [ { description: [ { lang: "eng", value: "CWE-89 SQL Injection", }, ], }, ], }, references: { reference_data: [ { name: "https://www.wordfence.com/blog/2021/03/several-vulnerabilities-patched-in-tutor-lms-plugin/", refsource: "MISC", url: "https://www.wordfence.com/blog/2021/03/several-vulnerabilities-patched-in-tutor-lms-plugin/", }, { name: "https://wpscan.com/vulnerability/5f5c0c6c-6f76-4366-b590-0aab557f8c60", refsource: "CONFIRM", url: "https://wpscan.com/vulnerability/5f5c0c6c-6f76-4366-b590-0aab557f8c60", }, ], }, source: { discovery: "UNKNOWN", }, }, }, }, cveMetadata: { assignerOrgId: "1bfdd5d7-9bf6-4a53-96ea-42e2716d7a81", assignerShortName: "WPScan", cveId: "CVE-2021-24186", datePublished: "2021-04-05T18:27:45", dateReserved: "2021-01-14T00:00:00", dateUpdated: "2024-08-03T19:21:18.629Z", state: "PUBLISHED", }, dataType: "CVE_RECORD", dataVersion: "5.1", }
cve-2021-25017
Vulnerability from cvelistv5
Published
2022-01-24 08:01
Modified
2024-08-03 19:49
Severity ?
EPSS score ?
Summary
The Tutor LMS WordPress plugin before 1.9.12 does not escape the search parameter before outputting it back in an attribute in an admin page, leading to a Reflected Cross-Site Scripting
References
| ▼ | URL | Tags |
|---|---|---|
| https://wpscan.com/vulnerability/2d0c4872-a341-4974-926c-10b094a5d13c | x_refsource_MISC | |
| https://plugins.trac.wordpress.org/changeset/2643821 | x_refsource_CONFIRM |
Impacted products
| Vendor | Product | Version | ||
|---|---|---|---|---|
| Unknown | Tutor LMS – eLearning and online course solution |
Version: 1.9.12 < 1.9.12 |
{ containers: { adp: [ { providerMetadata: { dateUpdated: "2024-08-03T19:49:14.592Z", orgId: "af854a3a-2127-422b-91ae-364da2661108", shortName: "CVE", }, references: [ { tags: [ "x_refsource_MISC", "x_transferred", ], url: "https://wpscan.com/vulnerability/2d0c4872-a341-4974-926c-10b094a5d13c", }, { tags: [ "x_refsource_CONFIRM", "x_transferred", ], url: "https://plugins.trac.wordpress.org/changeset/2643821", }, ], title: "CVE Program Container", }, ], cna: { affected: [ { product: "Tutor LMS – eLearning and online course solution", vendor: "Unknown", versions: [ { lessThan: "1.9.12", status: "affected", version: "1.9.12", versionType: "custom", }, ], }, ], credits: [ { lang: "en", value: "Krzysztof Zając", }, ], descriptions: [ { lang: "en", value: "The Tutor LMS WordPress plugin before 1.9.12 does not escape the search parameter before outputting it back in an attribute in an admin page, leading to a Reflected Cross-Site Scripting", }, ], problemTypes: [ { descriptions: [ { cweId: "CWE-79", description: "CWE-79 Cross-site Scripting (XSS)", lang: "en", type: "CWE", }, ], }, ], providerMetadata: { dateUpdated: "2022-01-24T08:01:11", orgId: "1bfdd5d7-9bf6-4a53-96ea-42e2716d7a81", shortName: "WPScan", }, references: [ { tags: [ "x_refsource_MISC", ], url: "https://wpscan.com/vulnerability/2d0c4872-a341-4974-926c-10b094a5d13c", }, { tags: [ "x_refsource_CONFIRM", ], url: "https://plugins.trac.wordpress.org/changeset/2643821", }, ], source: { discovery: "EXTERNAL", }, title: "Tutor LMS < 1.9.12 - Reflected Cross-Site Scripting", x_generator: "WPScan CVE Generator", x_legacyV4Record: { CVE_data_meta: { ASSIGNER: "contact@wpscan.com", ID: "CVE-2021-25017", STATE: "PUBLIC", TITLE: "Tutor LMS < 1.9.12 - Reflected Cross-Site Scripting", }, affects: { vendor: { vendor_data: [ { product: { product_data: [ { product_name: "Tutor LMS – eLearning and online course solution", version: { version_data: [ { version_affected: "<", version_name: "1.9.12", version_value: "1.9.12", }, ], }, }, ], }, vendor_name: "Unknown", }, ], }, }, credit: [ { lang: "eng", value: "Krzysztof Zając", }, ], data_format: "MITRE", data_type: "CVE", data_version: "4.0", description: { description_data: [ { lang: "eng", value: "The Tutor LMS WordPress plugin before 1.9.12 does not escape the search parameter before outputting it back in an attribute in an admin page, leading to a Reflected Cross-Site Scripting", }, ], }, generator: "WPScan CVE Generator", problemtype: { problemtype_data: [ { description: [ { lang: "eng", value: "CWE-79 Cross-site Scripting (XSS)", }, ], }, ], }, references: { reference_data: [ { name: "https://wpscan.com/vulnerability/2d0c4872-a341-4974-926c-10b094a5d13c", refsource: "MISC", url: "https://wpscan.com/vulnerability/2d0c4872-a341-4974-926c-10b094a5d13c", }, { name: "https://plugins.trac.wordpress.org/changeset/2643821", refsource: "CONFIRM", url: "https://plugins.trac.wordpress.org/changeset/2643821", }, ], }, source: { discovery: "EXTERNAL", }, }, }, }, cveMetadata: { assignerOrgId: "1bfdd5d7-9bf6-4a53-96ea-42e2716d7a81", assignerShortName: "WPScan", cveId: "CVE-2021-25017", datePublished: "2022-01-24T08:01:11", dateReserved: "2021-01-14T00:00:00", dateUpdated: "2024-08-03T19:49:14.592Z", state: "PUBLISHED", }, dataType: "CVE_RECORD", dataVersion: "5.1", }
cve-2022-2563
Vulnerability from cvelistv5
Published
2022-10-17 00:00
Modified
2024-08-03 00:39
Severity ?
EPSS score ?
Summary
The Tutor LMS WordPress plugin before 2.0.10 does not escape some course parameters, which could allow high privilege users such as admin to perform Stored Cross-Site Scripting attacks even when the unfiltered_html capability is disallowed (for example in multisite setup)
References
Impacted products
| Vendor | Product | Version | ||
|---|---|---|---|---|
| Unknown | Tutor LMS – eLearning and online course solution |
Version: 2.0.10 < 2.0.10 |
{ containers: { adp: [ { providerMetadata: { dateUpdated: "2024-08-03T00:39:08.066Z", orgId: "af854a3a-2127-422b-91ae-364da2661108", shortName: "CVE", }, references: [ { tags: [ "x_transferred", ], url: "https://wpscan.com/vulnerability/98cd761c-7527-4224-965d-d34472b5c19f", }, ], title: "CVE Program Container", }, ], cna: { affected: [ { product: "Tutor LMS – eLearning and online course solution", vendor: "Unknown", versions: [ { lessThan: "2.0.10", status: "affected", version: "2.0.10", versionType: "custom", }, ], }, ], credits: [ { lang: "en", value: "lucy", }, ], descriptions: [ { lang: "en", value: "The Tutor LMS WordPress plugin before 2.0.10 does not escape some course parameters, which could allow high privilege users such as admin to perform Stored Cross-Site Scripting attacks even when the unfiltered_html capability is disallowed (for example in multisite setup)", }, ], problemTypes: [ { descriptions: [ { cweId: "CWE-79", description: "CWE-79 Cross-Site Scripting (XSS)", lang: "en", type: "CWE", }, ], }, ], providerMetadata: { dateUpdated: "2022-10-17T00:00:00", orgId: "1bfdd5d7-9bf6-4a53-96ea-42e2716d7a81", shortName: "WPScan", }, references: [ { url: "https://wpscan.com/vulnerability/98cd761c-7527-4224-965d-d34472b5c19f", }, ], source: { discovery: "EXTERNAL", }, title: "Tutor LMS < 2.0.10 - Admin+ Stored Cross-Site Scripting", x_generator: "WPScan CVE Generator", }, }, cveMetadata: { assignerOrgId: "1bfdd5d7-9bf6-4a53-96ea-42e2716d7a81", assignerShortName: "WPScan", cveId: "CVE-2022-2563", datePublished: "2022-10-17T00:00:00", dateReserved: "2022-07-28T00:00:00", dateUpdated: "2024-08-03T00:39:08.066Z", state: "PUBLISHED", }, dataType: "CVE_RECORD", dataVersion: "5.1", }
cve-2021-24184
Vulnerability from cvelistv5
Published
2021-04-05 18:27
Modified
2024-08-03 19:21
Severity ?
EPSS score ?
Summary
Several AJAX endpoints in the Tutor LMS – eLearning and online course solution WordPress plugin before 1.7.7 were unprotected, allowing students to modify course information and elevate their privileges among many other actions.
References
| ▼ | URL | Tags |
|---|---|---|
| https://www.wordfence.com/blog/2021/03/several-vulnerabilities-patched-in-tutor-lms-plugin/ | x_refsource_MISC | |
| https://wpscan.com/vulnerability/5e85917c-7a58-49cb-b8b3-05aa18ffff3e | x_refsource_CONFIRM |
Impacted products
| Vendor | Product | Version | ||
|---|---|---|---|---|
| Unknown | Tutor LMS – eLearning and online course solution |
Version: 1.7.7 < 1.7.7 |
{ containers: { adp: [ { providerMetadata: { dateUpdated: "2024-08-03T19:21:18.926Z", orgId: "af854a3a-2127-422b-91ae-364da2661108", shortName: "CVE", }, references: [ { tags: [ "x_refsource_MISC", "x_transferred", ], url: "https://www.wordfence.com/blog/2021/03/several-vulnerabilities-patched-in-tutor-lms-plugin/", }, { tags: [ "x_refsource_CONFIRM", "x_transferred", ], url: "https://wpscan.com/vulnerability/5e85917c-7a58-49cb-b8b3-05aa18ffff3e", }, ], title: "CVE Program Container", }, ], cna: { affected: [ { product: "Tutor LMS – eLearning and online course solution", vendor: "Unknown", versions: [ { lessThan: "1.7.7", status: "affected", version: "1.7.7", versionType: "custom", }, ], }, ], credits: [ { lang: "en", value: "Chloe Chamberland", }, ], descriptions: [ { lang: "en", value: "Several AJAX endpoints in the Tutor LMS – eLearning and online course solution WordPress plugin before 1.7.7 were unprotected, allowing students to modify course information and elevate their privileges among many other actions.", }, ], problemTypes: [ { descriptions: [ { cweId: "CWE-862", description: "CWE-862 Missing Authorization", lang: "en", type: "CWE", }, ], }, ], providerMetadata: { dateUpdated: "2021-04-05T18:27:45", orgId: "1bfdd5d7-9bf6-4a53-96ea-42e2716d7a81", shortName: "WPScan", }, references: [ { tags: [ "x_refsource_MISC", ], url: "https://www.wordfence.com/blog/2021/03/several-vulnerabilities-patched-in-tutor-lms-plugin/", }, { tags: [ "x_refsource_CONFIRM", ], url: "https://wpscan.com/vulnerability/5e85917c-7a58-49cb-b8b3-05aa18ffff3e", }, ], source: { discovery: "UNKNOWN", }, title: "Tutor LMS < 1.7.7 - Unprotected AJAX including Privilege Escalation", x_generator: "WPScan CVE Generator", x_legacyV4Record: { CVE_data_meta: { ASSIGNER: "contact@wpscan.com", ID: "CVE-2021-24184", STATE: "PUBLIC", TITLE: "Tutor LMS < 1.7.7 - Unprotected AJAX including Privilege Escalation", }, affects: { vendor: { vendor_data: [ { product: { product_data: [ { product_name: "Tutor LMS – eLearning and online course solution", version: { version_data: [ { version_affected: "<", version_name: "1.7.7", version_value: "1.7.7", }, ], }, }, ], }, vendor_name: "Unknown", }, ], }, }, credit: [ { lang: "eng", value: "Chloe Chamberland", }, ], data_format: "MITRE", data_type: "CVE", data_version: "4.0", description: { description_data: [ { lang: "eng", value: "Several AJAX endpoints in the Tutor LMS – eLearning and online course solution WordPress plugin before 1.7.7 were unprotected, allowing students to modify course information and elevate their privileges among many other actions.", }, ], }, generator: "WPScan CVE Generator", problemtype: { problemtype_data: [ { description: [ { lang: "eng", value: "CWE-862 Missing Authorization", }, ], }, ], }, references: { reference_data: [ { name: "https://www.wordfence.com/blog/2021/03/several-vulnerabilities-patched-in-tutor-lms-plugin/", refsource: "MISC", url: "https://www.wordfence.com/blog/2021/03/several-vulnerabilities-patched-in-tutor-lms-plugin/", }, { name: "https://wpscan.com/vulnerability/5e85917c-7a58-49cb-b8b3-05aa18ffff3e", refsource: "CONFIRM", url: "https://wpscan.com/vulnerability/5e85917c-7a58-49cb-b8b3-05aa18ffff3e", }, ], }, source: { discovery: "UNKNOWN", }, }, }, }, cveMetadata: { assignerOrgId: "1bfdd5d7-9bf6-4a53-96ea-42e2716d7a81", assignerShortName: "WPScan", cveId: "CVE-2021-24184", datePublished: "2021-04-05T18:27:45", dateReserved: "2021-01-14T00:00:00", dateUpdated: "2024-08-03T19:21:18.926Z", state: "PUBLISHED", }, dataType: "CVE_RECORD", dataVersion: "5.1", }
cve-2021-24740
Vulnerability from cvelistv5
Published
2021-10-18 13:46
Modified
2024-08-03 19:42
Severity ?
EPSS score ?
Summary
The Tutor LMS WordPress plugin before 1.9.9 does not escape some of its settings before outputting them in attributes, which could allow high privilege users to perform Cross-Site Scripting attacks even when the unfiltered_html capability is disallowed.
References
| ▼ | URL | Tags |
|---|---|---|
| https://wpscan.com/vulnerability/e6cf694d-c4ae-4b91-97c0-a6bdbafc7d60 | x_refsource_MISC |
Impacted products
| Vendor | Product | Version | ||
|---|---|---|---|---|
| Unknown | Tutor LMS – eLearning and online course solution |
Version: 1.9.9 < 1.9.9 |
{ containers: { adp: [ { providerMetadata: { dateUpdated: "2024-08-03T19:42:16.648Z", orgId: "af854a3a-2127-422b-91ae-364da2661108", shortName: "CVE", }, references: [ { tags: [ "x_refsource_MISC", "x_transferred", ], url: "https://wpscan.com/vulnerability/e6cf694d-c4ae-4b91-97c0-a6bdbafc7d60", }, ], title: "CVE Program Container", }, ], cna: { affected: [ { product: "Tutor LMS – eLearning and online course solution", vendor: "Unknown", versions: [ { lessThan: "1.9.9", status: "affected", version: "1.9.9", versionType: "custom", }, ], }, ], credits: [ { lang: "en", value: "Shivam Rai", }, ], descriptions: [ { lang: "en", value: "The Tutor LMS WordPress plugin before 1.9.9 does not escape some of its settings before outputting them in attributes, which could allow high privilege users to perform Cross-Site Scripting attacks even when the unfiltered_html capability is disallowed.", }, ], problemTypes: [ { descriptions: [ { cweId: "CWE-79", description: "CWE-79 Cross-site Scripting (XSS)", lang: "en", type: "CWE", }, ], }, ], providerMetadata: { dateUpdated: "2021-10-18T13:46:07", orgId: "1bfdd5d7-9bf6-4a53-96ea-42e2716d7a81", shortName: "WPScan", }, references: [ { tags: [ "x_refsource_MISC", ], url: "https://wpscan.com/vulnerability/e6cf694d-c4ae-4b91-97c0-a6bdbafc7d60", }, ], source: { discovery: "EXTERNAL", }, title: "Tutor LMS < 1.9.9 - Multiple Admin+ Stored Cross-Site Scripting", x_generator: "WPScan CVE Generator", x_legacyV4Record: { CVE_data_meta: { ASSIGNER: "contact@wpscan.com", ID: "CVE-2021-24740", STATE: "PUBLIC", TITLE: "Tutor LMS < 1.9.9 - Multiple Admin+ Stored Cross-Site Scripting", }, affects: { vendor: { vendor_data: [ { product: { product_data: [ { product_name: "Tutor LMS – eLearning and online course solution", version: { version_data: [ { version_affected: "<", version_name: "1.9.9", version_value: "1.9.9", }, ], }, }, ], }, vendor_name: "Unknown", }, ], }, }, credit: [ { lang: "eng", value: "Shivam Rai", }, ], data_format: "MITRE", data_type: "CVE", data_version: "4.0", description: { description_data: [ { lang: "eng", value: "The Tutor LMS WordPress plugin before 1.9.9 does not escape some of its settings before outputting them in attributes, which could allow high privilege users to perform Cross-Site Scripting attacks even when the unfiltered_html capability is disallowed.", }, ], }, generator: "WPScan CVE Generator", problemtype: { problemtype_data: [ { description: [ { lang: "eng", value: "CWE-79 Cross-site Scripting (XSS)", }, ], }, ], }, references: { reference_data: [ { name: "https://wpscan.com/vulnerability/e6cf694d-c4ae-4b91-97c0-a6bdbafc7d60", refsource: "MISC", url: "https://wpscan.com/vulnerability/e6cf694d-c4ae-4b91-97c0-a6bdbafc7d60", }, ], }, source: { discovery: "EXTERNAL", }, }, }, }, cveMetadata: { assignerOrgId: "1bfdd5d7-9bf6-4a53-96ea-42e2716d7a81", assignerShortName: "WPScan", cveId: "CVE-2021-24740", datePublished: "2021-10-18T13:46:07", dateReserved: "2021-01-14T00:00:00", dateUpdated: "2024-08-03T19:42:16.648Z", state: "PUBLISHED", }, dataType: "CVE_RECORD", dataVersion: "5.1", }
cve-2021-24455
Vulnerability from cvelistv5
Published
2021-08-02 10:32
Modified
2024-08-03 19:35
Severity ?
EPSS score ?
Summary
The Tutor LMS – eLearning and online course solution WordPress plugin before 1.9.2 did not escape the Summary field of Announcements (when outputting it in an attribute), which can be created by users as low as Tutor Instructor. This lead to a Stored Cross-Site Scripting issue, which is triggered when viewing the Announcements list, and could result in privilege escalation when viewed by an admin.
References
| ▼ | URL | Tags |
|---|---|---|
| https://wpscan.com/vulnerability/9ef14cf1-1e04-4125-a296-9aa5388612f9 | x_refsource_MISC |
Impacted products
| Vendor | Product | Version | ||
|---|---|---|---|---|
| Unknown | Tutor LMS – eLearning and online course solution |
Version: 1.9.2 < 1.9.2 |
{ containers: { adp: [ { providerMetadata: { dateUpdated: "2024-08-03T19:35:19.191Z", orgId: "af854a3a-2127-422b-91ae-364da2661108", shortName: "CVE", }, references: [ { tags: [ "x_refsource_MISC", "x_transferred", ], url: "https://wpscan.com/vulnerability/9ef14cf1-1e04-4125-a296-9aa5388612f9", }, ], title: "CVE Program Container", }, ], cna: { affected: [ { product: "Tutor LMS – eLearning and online course solution", vendor: "Unknown", versions: [ { lessThan: "1.9.2", status: "affected", version: "1.9.2", versionType: "custom", }, ], }, ], credits: [ { lang: "en", value: "Phu Tran from techlabcorp.com", }, ], descriptions: [ { lang: "en", value: "The Tutor LMS – eLearning and online course solution WordPress plugin before 1.9.2 did not escape the Summary field of Announcements (when outputting it in an attribute), which can be created by users as low as Tutor Instructor. This lead to a Stored Cross-Site Scripting issue, which is triggered when viewing the Announcements list, and could result in privilege escalation when viewed by an admin.", }, ], problemTypes: [ { descriptions: [ { cweId: "CWE-79", description: "CWE-79 Cross-site Scripting (XSS)", lang: "en", type: "CWE", }, ], }, ], providerMetadata: { dateUpdated: "2021-08-02T10:32:01", orgId: "1bfdd5d7-9bf6-4a53-96ea-42e2716d7a81", shortName: "WPScan", }, references: [ { tags: [ "x_refsource_MISC", ], url: "https://wpscan.com/vulnerability/9ef14cf1-1e04-4125-a296-9aa5388612f9", }, ], source: { discovery: "UNKNOWN", }, title: "Tutor LMS < 1.9.2 - Authenticated Stored Cross-Site Scripting (XSS)", x_generator: "WPScan CVE Generator", x_legacyV4Record: { CVE_data_meta: { ASSIGNER: "contact@wpscan.com", ID: "CVE-2021-24455", STATE: "PUBLIC", TITLE: "Tutor LMS < 1.9.2 - Authenticated Stored Cross-Site Scripting (XSS)", }, affects: { vendor: { vendor_data: [ { product: { product_data: [ { product_name: "Tutor LMS – eLearning and online course solution", version: { version_data: [ { version_affected: "<", version_name: "1.9.2", version_value: "1.9.2", }, ], }, }, ], }, vendor_name: "Unknown", }, ], }, }, credit: [ { lang: "eng", value: "Phu Tran from techlabcorp.com", }, ], data_format: "MITRE", data_type: "CVE", data_version: "4.0", description: { description_data: [ { lang: "eng", value: "The Tutor LMS – eLearning and online course solution WordPress plugin before 1.9.2 did not escape the Summary field of Announcements (when outputting it in an attribute), which can be created by users as low as Tutor Instructor. This lead to a Stored Cross-Site Scripting issue, which is triggered when viewing the Announcements list, and could result in privilege escalation when viewed by an admin.", }, ], }, generator: "WPScan CVE Generator", problemtype: { problemtype_data: [ { description: [ { lang: "eng", value: "CWE-79 Cross-site Scripting (XSS)", }, ], }, ], }, references: { reference_data: [ { name: "https://wpscan.com/vulnerability/9ef14cf1-1e04-4125-a296-9aa5388612f9", refsource: "MISC", url: "https://wpscan.com/vulnerability/9ef14cf1-1e04-4125-a296-9aa5388612f9", }, ], }, source: { discovery: "UNKNOWN", }, }, }, }, cveMetadata: { assignerOrgId: "1bfdd5d7-9bf6-4a53-96ea-42e2716d7a81", assignerShortName: "WPScan", cveId: "CVE-2021-24455", datePublished: "2021-08-02T10:32:01", dateReserved: "2021-01-14T00:00:00", dateUpdated: "2024-08-03T19:35:19.191Z", state: "PUBLISHED", }, dataType: "CVE_RECORD", dataVersion: "5.1", }
cve-2021-24185
Vulnerability from cvelistv5
Published
2021-04-05 18:27
Modified
2024-08-03 19:21
Severity ?
EPSS score ?
Summary
The tutor_place_rating AJAX action from the Tutor LMS – eLearning and online course solution WordPress plugin before 1.7.7 was vulnerable to blind and time based SQL injections that could be exploited by students.
References
| ▼ | URL | Tags |
|---|---|---|
| https://www.wordfence.com/blog/2021/03/several-vulnerabilities-patched-in-tutor-lms-plugin/ | x_refsource_MISC | |
| https://wpscan.com/vulnerability/0cba5349-e916-43f0-a1fe-62cf73e352a2 | x_refsource_CONFIRM |
Impacted products
| Vendor | Product | Version | ||
|---|---|---|---|---|
| Unknown | Tutor LMS – eLearning and online course solution |
Version: 1.7.7 < 1.7.7 |
{ containers: { adp: [ { providerMetadata: { dateUpdated: "2024-08-03T19:21:18.658Z", orgId: "af854a3a-2127-422b-91ae-364da2661108", shortName: "CVE", }, references: [ { tags: [ "x_refsource_MISC", "x_transferred", ], url: "https://www.wordfence.com/blog/2021/03/several-vulnerabilities-patched-in-tutor-lms-plugin/", }, { tags: [ "x_refsource_CONFIRM", "x_transferred", ], url: "https://wpscan.com/vulnerability/0cba5349-e916-43f0-a1fe-62cf73e352a2", }, ], title: "CVE Program Container", }, ], cna: { affected: [ { product: "Tutor LMS – eLearning and online course solution", vendor: "Unknown", versions: [ { lessThan: "1.7.7", status: "affected", version: "1.7.7", versionType: "custom", }, ], }, ], credits: [ { lang: "en", value: "Chloe Chamberland", }, ], descriptions: [ { lang: "en", value: "The tutor_place_rating AJAX action from the Tutor LMS – eLearning and online course solution WordPress plugin before 1.7.7 was vulnerable to blind and time based SQL injections that could be exploited by students.", }, ], problemTypes: [ { descriptions: [ { cweId: "CWE-89", description: "CWE-89 SQL Injection", lang: "en", type: "CWE", }, ], }, ], providerMetadata: { dateUpdated: "2021-04-05T18:27:45", orgId: "1bfdd5d7-9bf6-4a53-96ea-42e2716d7a81", shortName: "WPScan", }, references: [ { tags: [ "x_refsource_MISC", ], url: "https://www.wordfence.com/blog/2021/03/several-vulnerabilities-patched-in-tutor-lms-plugin/", }, { tags: [ "x_refsource_CONFIRM", ], url: "https://wpscan.com/vulnerability/0cba5349-e916-43f0-a1fe-62cf73e352a2", }, ], source: { discovery: "UNKNOWN", }, title: "Tutor LMS < 1.7.7 - SQL Injection via tutor_place_rating", x_generator: "WPScan CVE Generator", x_legacyV4Record: { CVE_data_meta: { ASSIGNER: "contact@wpscan.com", ID: "CVE-2021-24185", STATE: "PUBLIC", TITLE: "Tutor LMS < 1.7.7 - SQL Injection via tutor_place_rating", }, affects: { vendor: { vendor_data: [ { product: { product_data: [ { product_name: "Tutor LMS – eLearning and online course solution", version: { version_data: [ { version_affected: "<", version_name: "1.7.7", version_value: "1.7.7", }, ], }, }, ], }, vendor_name: "Unknown", }, ], }, }, credit: [ { lang: "eng", value: "Chloe Chamberland", }, ], data_format: "MITRE", data_type: "CVE", data_version: "4.0", description: { description_data: [ { lang: "eng", value: "The tutor_place_rating AJAX action from the Tutor LMS – eLearning and online course solution WordPress plugin before 1.7.7 was vulnerable to blind and time based SQL injections that could be exploited by students.", }, ], }, generator: "WPScan CVE Generator", problemtype: { problemtype_data: [ { description: [ { lang: "eng", value: "CWE-89 SQL Injection", }, ], }, ], }, references: { reference_data: [ { name: "https://www.wordfence.com/blog/2021/03/several-vulnerabilities-patched-in-tutor-lms-plugin/", refsource: "MISC", url: "https://www.wordfence.com/blog/2021/03/several-vulnerabilities-patched-in-tutor-lms-plugin/", }, { name: "https://wpscan.com/vulnerability/0cba5349-e916-43f0-a1fe-62cf73e352a2", refsource: "CONFIRM", url: "https://wpscan.com/vulnerability/0cba5349-e916-43f0-a1fe-62cf73e352a2", }, ], }, source: { discovery: "UNKNOWN", }, }, }, }, cveMetadata: { assignerOrgId: "1bfdd5d7-9bf6-4a53-96ea-42e2716d7a81", assignerShortName: "WPScan", cveId: "CVE-2021-24185", datePublished: "2021-04-05T18:27:45", dateReserved: "2021-01-14T00:00:00", dateUpdated: "2024-08-03T19:21:18.658Z", state: "PUBLISHED", }, dataType: "CVE_RECORD", dataVersion: "5.1", }
cve-2021-24181
Vulnerability from cvelistv5
Published
2021-04-05 18:27
Modified
2024-08-03 19:21
Severity ?
EPSS score ?
Summary
The tutor_mark_answer_as_correct AJAX action from the Tutor LMS – eLearning and online course solution WordPress plugin before 1.7.7 was vulnerable to blind and time based SQL injections that could be exploited by students.
References
| ▼ | URL | Tags |
|---|---|---|
| https://wpscan.com/vulnerability/d5a00322-7098-4f8d-8e5e-157b63449c17 | x_refsource_CONFIRM | |
| https://www.wordfence.com/blog/2021/03/several-vulnerabilities-patched-in-tutor-lms-plugin/ | x_refsource_MISC |
Impacted products
| Vendor | Product | Version | ||
|---|---|---|---|---|
| Unknown | Tutor LMS – eLearning and online course solution |
Version: 1.7.7 < 1.7.7 |
{ containers: { adp: [ { providerMetadata: { dateUpdated: "2024-08-03T19:21:18.715Z", orgId: "af854a3a-2127-422b-91ae-364da2661108", shortName: "CVE", }, references: [ { tags: [ "x_refsource_CONFIRM", "x_transferred", ], url: "https://wpscan.com/vulnerability/d5a00322-7098-4f8d-8e5e-157b63449c17", }, { tags: [ "x_refsource_MISC", "x_transferred", ], url: "https://www.wordfence.com/blog/2021/03/several-vulnerabilities-patched-in-tutor-lms-plugin/", }, ], title: "CVE Program Container", }, ], cna: { affected: [ { product: "Tutor LMS – eLearning and online course solution", vendor: "Unknown", versions: [ { lessThan: "1.7.7", status: "affected", version: "1.7.7", versionType: "custom", }, ], }, ], credits: [ { lang: "en", value: "Chloe Chamberland", }, ], descriptions: [ { lang: "en", value: "The tutor_mark_answer_as_correct AJAX action from the Tutor LMS – eLearning and online course solution WordPress plugin before 1.7.7 was vulnerable to blind and time based SQL injections that could be exploited by students.", }, ], problemTypes: [ { descriptions: [ { cweId: "CWE-89", description: "CWE-89 SQL Injection", lang: "en", type: "CWE", }, ], }, ], providerMetadata: { dateUpdated: "2021-04-05T18:27:45", orgId: "1bfdd5d7-9bf6-4a53-96ea-42e2716d7a81", shortName: "WPScan", }, references: [ { tags: [ "x_refsource_CONFIRM", ], url: "https://wpscan.com/vulnerability/d5a00322-7098-4f8d-8e5e-157b63449c17", }, { tags: [ "x_refsource_MISC", ], url: "https://www.wordfence.com/blog/2021/03/several-vulnerabilities-patched-in-tutor-lms-plugin/", }, ], source: { discovery: "UNKNOWN", }, title: "Tutor LMS < 1.7.7 - SQL Injection via tutor_mark_answer_as_correct", x_generator: "WPScan CVE Generator", x_legacyV4Record: { CVE_data_meta: { ASSIGNER: "contact@wpscan.com", ID: "CVE-2021-24181", STATE: "PUBLIC", TITLE: "Tutor LMS < 1.7.7 - SQL Injection via tutor_mark_answer_as_correct", }, affects: { vendor: { vendor_data: [ { product: { product_data: [ { product_name: "Tutor LMS – eLearning and online course solution", version: { version_data: [ { version_affected: "<", version_name: "1.7.7", version_value: "1.7.7", }, ], }, }, ], }, vendor_name: "Unknown", }, ], }, }, credit: [ { lang: "eng", value: "Chloe Chamberland", }, ], data_format: "MITRE", data_type: "CVE", data_version: "4.0", description: { description_data: [ { lang: "eng", value: "The tutor_mark_answer_as_correct AJAX action from the Tutor LMS – eLearning and online course solution WordPress plugin before 1.7.7 was vulnerable to blind and time based SQL injections that could be exploited by students.", }, ], }, generator: "WPScan CVE Generator", problemtype: { problemtype_data: [ { description: [ { lang: "eng", value: "CWE-89 SQL Injection", }, ], }, ], }, references: { reference_data: [ { name: "https://wpscan.com/vulnerability/d5a00322-7098-4f8d-8e5e-157b63449c17", refsource: "CONFIRM", url: "https://wpscan.com/vulnerability/d5a00322-7098-4f8d-8e5e-157b63449c17", }, { name: "https://www.wordfence.com/blog/2021/03/several-vulnerabilities-patched-in-tutor-lms-plugin/", refsource: "MISC", url: "https://www.wordfence.com/blog/2021/03/several-vulnerabilities-patched-in-tutor-lms-plugin/", }, ], }, source: { discovery: "UNKNOWN", }, }, }, }, cveMetadata: { assignerOrgId: "1bfdd5d7-9bf6-4a53-96ea-42e2716d7a81", assignerShortName: "WPScan", cveId: "CVE-2021-24181", datePublished: "2021-04-05T18:27:45", dateReserved: "2021-01-14T00:00:00", dateUpdated: "2024-08-03T19:21:18.715Z", state: "PUBLISHED", }, dataType: "CVE_RECORD", dataVersion: "5.1", }
cve-2021-24183
Vulnerability from cvelistv5
Published
2021-04-05 18:27
Modified
2024-08-03 19:21
Severity ?
EPSS score ?
Summary
The tutor_quiz_builder_get_question_form AJAX action from the Tutor LMS – eLearning and online course solution WordPress plugin before 1.8.3 was vulnerable to UNION based SQL injection that could be exploited by students.
References
| ▼ | URL | Tags |
|---|---|---|
| https://www.wordfence.com/blog/2021/03/several-vulnerabilities-patched-in-tutor-lms-plugin/ | x_refsource_MISC | |
| https://wpscan.com/vulnerability/9b8da6b7-f1d6-4a7d-a621-4ca01e4b7496 | x_refsource_CONFIRM |
Impacted products
| Vendor | Product | Version | ||
|---|---|---|---|---|
| Unknown | Tutor LMS – eLearning and online course solution |
Version: 1.8.3 < 1.8.3 |
{ containers: { adp: [ { providerMetadata: { dateUpdated: "2024-08-03T19:21:18.708Z", orgId: "af854a3a-2127-422b-91ae-364da2661108", shortName: "CVE", }, references: [ { tags: [ "x_refsource_MISC", "x_transferred", ], url: "https://www.wordfence.com/blog/2021/03/several-vulnerabilities-patched-in-tutor-lms-plugin/", }, { tags: [ "x_refsource_CONFIRM", "x_transferred", ], url: "https://wpscan.com/vulnerability/9b8da6b7-f1d6-4a7d-a621-4ca01e4b7496", }, ], title: "CVE Program Container", }, ], cna: { affected: [ { product: "Tutor LMS – eLearning and online course solution", vendor: "Unknown", versions: [ { lessThan: "1.8.3", status: "affected", version: "1.8.3", versionType: "custom", }, ], }, ], credits: [ { lang: "en", value: "Chloe Chamberland", }, ], descriptions: [ { lang: "en", value: "The tutor_quiz_builder_get_question_form AJAX action from the Tutor LMS – eLearning and online course solution WordPress plugin before 1.8.3 was vulnerable to UNION based SQL injection that could be exploited by students.", }, ], problemTypes: [ { descriptions: [ { cweId: "CWE-89", description: "CWE-89 SQL Injection", lang: "en", type: "CWE", }, ], }, ], providerMetadata: { dateUpdated: "2021-04-05T18:27:45", orgId: "1bfdd5d7-9bf6-4a53-96ea-42e2716d7a81", shortName: "WPScan", }, references: [ { tags: [ "x_refsource_MISC", ], url: "https://www.wordfence.com/blog/2021/03/several-vulnerabilities-patched-in-tutor-lms-plugin/", }, { tags: [ "x_refsource_CONFIRM", ], url: "https://wpscan.com/vulnerability/9b8da6b7-f1d6-4a7d-a621-4ca01e4b7496", }, ], source: { discovery: "UNKNOWN", }, title: "Tutor LMS < 1.8.3 - SQL Injection via tutor_quiz_builder_get_question_form", x_generator: "WPScan CVE Generator", x_legacyV4Record: { CVE_data_meta: { ASSIGNER: "contact@wpscan.com", ID: "CVE-2021-24183", STATE: "PUBLIC", TITLE: "Tutor LMS < 1.8.3 - SQL Injection via tutor_quiz_builder_get_question_form", }, affects: { vendor: { vendor_data: [ { product: { product_data: [ { product_name: "Tutor LMS – eLearning and online course solution", version: { version_data: [ { version_affected: "<", version_name: "1.8.3", version_value: "1.8.3", }, ], }, }, ], }, vendor_name: "Unknown", }, ], }, }, credit: [ { lang: "eng", value: "Chloe Chamberland", }, ], data_format: "MITRE", data_type: "CVE", data_version: "4.0", description: { description_data: [ { lang: "eng", value: "The tutor_quiz_builder_get_question_form AJAX action from the Tutor LMS – eLearning and online course solution WordPress plugin before 1.8.3 was vulnerable to UNION based SQL injection that could be exploited by students.", }, ], }, generator: "WPScan CVE Generator", problemtype: { problemtype_data: [ { description: [ { lang: "eng", value: "CWE-89 SQL Injection", }, ], }, ], }, references: { reference_data: [ { name: "https://www.wordfence.com/blog/2021/03/several-vulnerabilities-patched-in-tutor-lms-plugin/", refsource: "MISC", url: "https://www.wordfence.com/blog/2021/03/several-vulnerabilities-patched-in-tutor-lms-plugin/", }, { name: "https://wpscan.com/vulnerability/9b8da6b7-f1d6-4a7d-a621-4ca01e4b7496", refsource: "CONFIRM", url: "https://wpscan.com/vulnerability/9b8da6b7-f1d6-4a7d-a621-4ca01e4b7496", }, ], }, source: { discovery: "UNKNOWN", }, }, }, }, cveMetadata: { assignerOrgId: "1bfdd5d7-9bf6-4a53-96ea-42e2716d7a81", assignerShortName: "WPScan", cveId: "CVE-2021-24183", datePublished: "2021-04-05T18:27:45", dateReserved: "2021-01-14T00:00:00", dateUpdated: "2024-08-03T19:21:18.708Z", state: "PUBLISHED", }, dataType: "CVE_RECORD", dataVersion: "5.1", }
cve-2021-24873
Vulnerability from cvelistv5
Published
2021-11-23 19:16
Modified
2024-08-03 19:49
Severity ?
EPSS score ?
Summary
The Tutor LMS WordPress plugin before 1.9.11 does not sanitise and escape user input before outputting back in attributes in the Student Registration page, leading to a Reflected Cross-Site Scripting issue
References
| ▼ | URL | Tags |
|---|---|---|
| https://wpscan.com/vulnerability/19980b57-1954-4a29-b2c2-43eadf758ed3 | x_refsource_MISC | |
| https://plugins.trac.wordpress.org/changeset/2615802/tutor | x_refsource_CONFIRM |
Impacted products
| Vendor | Product | Version | ||
|---|---|---|---|---|
| Unknown | Tutor LMS – eLearning and online course solution |
Version: 1.9.11 < 1.9.11 |
{ containers: { adp: [ { providerMetadata: { dateUpdated: "2024-08-03T19:49:13.471Z", orgId: "af854a3a-2127-422b-91ae-364da2661108", shortName: "CVE", }, references: [ { tags: [ "x_refsource_MISC", "x_transferred", ], url: "https://wpscan.com/vulnerability/19980b57-1954-4a29-b2c2-43eadf758ed3", }, { tags: [ "x_refsource_CONFIRM", "x_transferred", ], url: "https://plugins.trac.wordpress.org/changeset/2615802/tutor", }, ], title: "CVE Program Container", }, ], cna: { affected: [ { product: "Tutor LMS – eLearning and online course solution", vendor: "Unknown", versions: [ { lessThan: "1.9.11", status: "affected", version: "1.9.11", versionType: "custom", }, ], }, ], credits: [ { lang: "en", value: "JrXnm", }, ], descriptions: [ { lang: "en", value: "The Tutor LMS WordPress plugin before 1.9.11 does not sanitise and escape user input before outputting back in attributes in the Student Registration page, leading to a Reflected Cross-Site Scripting issue", }, ], problemTypes: [ { descriptions: [ { cweId: "CWE-79", description: "CWE-79 Cross-site Scripting (XSS)", lang: "en", type: "CWE", }, ], }, ], providerMetadata: { dateUpdated: "2021-11-23T19:16:14", orgId: "1bfdd5d7-9bf6-4a53-96ea-42e2716d7a81", shortName: "WPScan", }, references: [ { tags: [ "x_refsource_MISC", ], url: "https://wpscan.com/vulnerability/19980b57-1954-4a29-b2c2-43eadf758ed3", }, { tags: [ "x_refsource_CONFIRM", ], url: "https://plugins.trac.wordpress.org/changeset/2615802/tutor", }, ], source: { discovery: "EXTERNAL", }, title: "Tutor LMS < 1.9.11 - Reflected Cross-Site Scripting", x_generator: "WPScan CVE Generator", x_legacyV4Record: { CVE_data_meta: { ASSIGNER: "contact@wpscan.com", ID: "CVE-2021-24873", STATE: "PUBLIC", TITLE: "Tutor LMS < 1.9.11 - Reflected Cross-Site Scripting", }, affects: { vendor: { vendor_data: [ { product: { product_data: [ { product_name: "Tutor LMS – eLearning and online course solution", version: { version_data: [ { version_affected: "<", version_name: "1.9.11", version_value: "1.9.11", }, ], }, }, ], }, vendor_name: "Unknown", }, ], }, }, credit: [ { lang: "eng", value: "JrXnm", }, ], data_format: "MITRE", data_type: "CVE", data_version: "4.0", description: { description_data: [ { lang: "eng", value: "The Tutor LMS WordPress plugin before 1.9.11 does not sanitise and escape user input before outputting back in attributes in the Student Registration page, leading to a Reflected Cross-Site Scripting issue", }, ], }, generator: "WPScan CVE Generator", problemtype: { problemtype_data: [ { description: [ { lang: "eng", value: "CWE-79 Cross-site Scripting (XSS)", }, ], }, ], }, references: { reference_data: [ { name: "https://wpscan.com/vulnerability/19980b57-1954-4a29-b2c2-43eadf758ed3", refsource: "MISC", url: "https://wpscan.com/vulnerability/19980b57-1954-4a29-b2c2-43eadf758ed3", }, { name: "https://plugins.trac.wordpress.org/changeset/2615802/tutor", refsource: "CONFIRM", url: "https://plugins.trac.wordpress.org/changeset/2615802/tutor", }, ], }, source: { discovery: "EXTERNAL", }, }, }, }, cveMetadata: { assignerOrgId: "1bfdd5d7-9bf6-4a53-96ea-42e2716d7a81", assignerShortName: "WPScan", cveId: "CVE-2021-24873", datePublished: "2021-11-23T19:16:14", dateReserved: "2021-01-14T00:00:00", dateUpdated: "2024-08-03T19:49:13.471Z", state: "PUBLISHED", }, dataType: "CVE_RECORD", dataVersion: "5.1", }
cve-2021-24182
Vulnerability from cvelistv5
Published
2021-04-05 18:27
Modified
2024-08-03 19:21
Severity ?
EPSS score ?
Summary
The tutor_quiz_builder_get_answers_by_question AJAX action from the Tutor LMS – eLearning and online course solution WordPress plugin before 1.8.3 was vulnerable to UNION based SQL injection that could be exploited by students.
References
| ▼ | URL | Tags |
|---|---|---|
| https://www.wordfence.com/blog/2021/03/several-vulnerabilities-patched-in-tutor-lms-plugin/ | x_refsource_MISC | |
| https://wpscan.com/vulnerability/f74dfc52-46ba-41e3-994b-23115a22984f | x_refsource_CONFIRM |
Impacted products
| Vendor | Product | Version | ||
|---|---|---|---|---|
| Unknown | Tutor LMS – eLearning and online course solution |
Version: 1.8.3 < 1.8.3 |
{ containers: { adp: [ { providerMetadata: { dateUpdated: "2024-08-03T19:21:18.774Z", orgId: "af854a3a-2127-422b-91ae-364da2661108", shortName: "CVE", }, references: [ { tags: [ "x_refsource_MISC", "x_transferred", ], url: "https://www.wordfence.com/blog/2021/03/several-vulnerabilities-patched-in-tutor-lms-plugin/", }, { tags: [ "x_refsource_CONFIRM", "x_transferred", ], url: "https://wpscan.com/vulnerability/f74dfc52-46ba-41e3-994b-23115a22984f", }, ], title: "CVE Program Container", }, ], cna: { affected: [ { product: "Tutor LMS – eLearning and online course solution", vendor: "Unknown", versions: [ { lessThan: "1.8.3", status: "affected", version: "1.8.3", versionType: "custom", }, ], }, ], credits: [ { lang: "en", value: "Chloe Chamberland", }, ], descriptions: [ { lang: "en", value: "The tutor_quiz_builder_get_answers_by_question AJAX action from the Tutor LMS – eLearning and online course solution WordPress plugin before 1.8.3 was vulnerable to UNION based SQL injection that could be exploited by students.", }, ], problemTypes: [ { descriptions: [ { cweId: "CWE-89", description: "CWE-89 SQL Injection", lang: "en", type: "CWE", }, ], }, ], providerMetadata: { dateUpdated: "2021-04-05T18:27:45", orgId: "1bfdd5d7-9bf6-4a53-96ea-42e2716d7a81", shortName: "WPScan", }, references: [ { tags: [ "x_refsource_MISC", ], url: "https://www.wordfence.com/blog/2021/03/several-vulnerabilities-patched-in-tutor-lms-plugin/", }, { tags: [ "x_refsource_CONFIRM", ], url: "https://wpscan.com/vulnerability/f74dfc52-46ba-41e3-994b-23115a22984f", }, ], source: { discovery: "UNKNOWN", }, title: "Tutor LMS < 1.8.3 - SQL Injection via tutor_quiz_builder_get_answers_by_question", x_generator: "WPScan CVE Generator", x_legacyV4Record: { CVE_data_meta: { ASSIGNER: "contact@wpscan.com", ID: "CVE-2021-24182", STATE: "PUBLIC", TITLE: "Tutor LMS < 1.8.3 - SQL Injection via tutor_quiz_builder_get_answers_by_question", }, affects: { vendor: { vendor_data: [ { product: { product_data: [ { product_name: "Tutor LMS – eLearning and online course solution", version: { version_data: [ { version_affected: "<", version_name: "1.8.3", version_value: "1.8.3", }, ], }, }, ], }, vendor_name: "Unknown", }, ], }, }, credit: [ { lang: "eng", value: "Chloe Chamberland", }, ], data_format: "MITRE", data_type: "CVE", data_version: "4.0", description: { description_data: [ { lang: "eng", value: "The tutor_quiz_builder_get_answers_by_question AJAX action from the Tutor LMS – eLearning and online course solution WordPress plugin before 1.8.3 was vulnerable to UNION based SQL injection that could be exploited by students.", }, ], }, generator: "WPScan CVE Generator", problemtype: { problemtype_data: [ { description: [ { lang: "eng", value: "CWE-89 SQL Injection", }, ], }, ], }, references: { reference_data: [ { name: "https://www.wordfence.com/blog/2021/03/several-vulnerabilities-patched-in-tutor-lms-plugin/", refsource: "MISC", url: "https://www.wordfence.com/blog/2021/03/several-vulnerabilities-patched-in-tutor-lms-plugin/", }, { name: "https://wpscan.com/vulnerability/f74dfc52-46ba-41e3-994b-23115a22984f", refsource: "CONFIRM", url: "https://wpscan.com/vulnerability/f74dfc52-46ba-41e3-994b-23115a22984f", }, ], }, source: { discovery: "UNKNOWN", }, }, }, }, cveMetadata: { assignerOrgId: "1bfdd5d7-9bf6-4a53-96ea-42e2716d7a81", assignerShortName: "WPScan", cveId: "CVE-2021-24182", datePublished: "2021-04-05T18:27:45", dateReserved: "2021-01-14T00:00:00", dateUpdated: "2024-08-03T19:21:18.774Z", state: "PUBLISHED", }, dataType: "CVE_RECORD", dataVersion: "5.1", }