ATutor Improper Privilege Management Vulnerability - CVE-2017-1000003 - Vulnerability Database

ATutor Improper Privilege Management Vulnerability - CVE-2017-1000003

Critical
Reference: CVE-2017-1000003
Title: ATutor Improper Privilege Management Vulnerability
Overview:

ATutor versions 2.2.1 and earlier are vulnerable to an incorrect access control check vulnerability in the Social Application component resulting in privilege escalation. ATutor versions 2.2.1 and earlier are vulnerable to an incorrect access control check vulnerability in the Module component resulting in privilege escalation. ATutor versions 2.2.1 and earlier are vulnerable to a incorrect access control check vulnerability in the Alternative Content component resulting in privilege escalation.