Page 3 of 21 results (0.010 seconds)

CVSS: 6.1EPSS: 0%CPEs: 1EXPL: 0

The Tutor LMS WordPress plugin before 1.9.11 does not sanitise and escape user input before outputting back in attributes in the Student Registration page, leading to a Reflected Cross-Site Scripting issue El plugin Tutor LMS de WordPress versiones anteriores a 1.9.11, no sanea ni escapa de la entrada del usuario antes de devolverla en atributos en la página de registro de estudiantes, conllevando un problema de tipo Cross-Site Scripting Reflejado • https://plugins.trac.wordpress.org/changeset/2615802/tutor https://wpscan.com/vulnerability/19980b57-1954-4a29-b2c2-43eadf758ed3 • CWE-79: Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') •

CVSS: 5.5EPSS: 0%CPEs: 1EXPL: 1

The Tutor LMS WordPress plugin before 1.9.9 does not escape some of its settings before outputting them in attributes, which could allow high privilege users to perform Cross-Site Scripting attacks even when the unfiltered_html capability is disallowed. El plugin Tutor LMS de WordPress versiones anteriores a 1.9.9, no escapa a algunas de sus configuraciones antes de mostrarlas en atributos, que podría permitir a usuarios con altos privilegios llevar a cabo ataques de tipo Cross-Site Scripting incluso cuando la capacidad unfiltered_html está deshabilitada • https://wpscan.com/vulnerability/e6cf694d-c4ae-4b91-97c0-a6bdbafc7d60 • CWE-79: Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') •

CVSS: 5.5EPSS: 0%CPEs: 1EXPL: 1

The Tutor LMS – eLearning and online course solution WordPress plugin before 1.9.2 did not escape the Summary field of Announcements (when outputting it in an attribute), which can be created by users as low as Tutor Instructor. This lead to a Stored Cross-Site Scripting issue, which is triggered when viewing the Announcements list, and could result in privilege escalation when viewed by an admin. El plugin de WordPress Tutor LMS - eLearning and online course solution versiones anteriores a 1.9.2, no escapaba el campo Summary of Announcements (cuando lo mostraba en un atributo), que puede ser creado por usuarios tan bajos como Tutor Instructor. Esto conllevaba a un problema de tipo Cross-Site Scripting Almacenado, que se desencadena cuando se visualiza la lista de Anuncios, y podía resultar en una escalada de privilegios cuando era visualizada por un administrador • https://wpscan.com/vulnerability/9ef14cf1-1e04-4125-a296-9aa5388612f9 • CWE-79: Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') •

CVSS: 5.5EPSS: 0%CPEs: 1EXPL: 1

The Tutor LMS – eLearning and online course solution WordPress plugin before 1.8.8 is affected by a local file inclusion vulnerability through the maliciously constructed sub_page parameter of the plugin's Tools, allowing high privilege users to include any local php file El plugin de WordPress Tutor LMS - eLearning and online course solution versiones anteriores a 1.8.8 está afectado por una vulnerabilidad de inclusión de archivos locales por medio del parámetro sub_page construido maliciosamente de las herramientas del plugin, permitiendo a usuarios con altos privilegios incluir cualquier archivo php local • https://wpscan.com/vulnerability/20f3e63a-31d8-49a0-b4ef-209749feff5c • CWE-22: Improper Limitation of a Pathname to a Restricted Directory ('Path Traversal') CWE-98: Improper Control of Filename for Include/Require Statement in PHP Program ('PHP Remote File Inclusion') •

CVSS: 6.5EPSS: 0%CPEs: 1EXPL: 2

The tutor_quiz_builder_get_question_form AJAX action from the Tutor LMS – eLearning and online course solution WordPress plugin before 1.8.3 was vulnerable to UNION based SQL injection that could be exploited by students. La acción tutor_quiz_builder_get_question_form AJAX del plugin de WordPress Tutor LMS – eLearning and online course solution versiones anteriores a 1.8.3, era vulnerable a una inyección SQL basada en UNION que podía ser explotada por estudiantes • https://wpscan.com/vulnerability/9b8da6b7-f1d6-4a7d-a621-4ca01e4b7496 https://www.wordfence.com/blog/2021/03/several-vulnerabilities-patched-in-tutor-lms-plugin • CWE-89: Improper Neutralization of Special Elements used in an SQL Command ('SQL Injection') •