← voltar
CVE-2021-24562

LifterLMS < 4.21.2 - Access Other Student Grades/Answers via IDOR

EPSS 1.6%CWE-639
The LMS by LifterLMS – Online Course, Membership & Learning Management System Plugin for WordPress plugin before 4.21.2 was affected by an IDOR issue, allowing students to see other student answers and grades
Produtos afetados
Unknown · LMS by LifterLMS – Online Course, Membership & Learning Management System Plugin for WordPress

Quer saber se a sua infraestrutura está exposta a isto?

Falar com a TrueHacking →
Referências
https://make.lifterlms.com/2021/05/17/lifterlms-version-4-21-2/https://wpscan.com/vulnerability/d45bb744-4a0d-4af0-aa16-71f7e3ea6e00