Get a demo
100% Signal 0% Noise Invicti Logo - The Largest Dynamic Application Security Solutions Provider In The World Get a demo
WordPress Plugin Tutor LMS-eLearning and online course solution Insecure Direct Object Reference - CVE-2024-4279 - Vulnerability Database
WP Plugin Tutor

WordPress Plugin Tutor LMS-eLearning and online course solution Insecure Direct Object Reference - CVE-2024-4279

Medium
Reference: CVE-2024-4279
NVD Link: https://nvd.nist.gov/vuln/detail/CVE-2024-4279
Title: WordPress Plugin Tutor LMS-eLearning and online course solution Insecure Direct Object Reference
Overview:

WordPress Plugin Tutor LMS-eLearning and online course solution is prone to a insecure direct object reference (IDOR) vulnerability. Exploiting this issue may allow an attacker to delete any course. WordPress Plugin Tutor LMS-eLearning and online course solution version 2.7.0 is vulnerable prior versions may also be affected.