CVE-2026-10736

EPSS 0.36%
Veröffentlicht 18.06.2026 05:34:24
Zuletzt bearbeitet 18.06.2026 05:34:24
Quelle b15e7b5b-3da4-40ae-a43c-f7aa60
CVE-Watchlists
Login
Unerledigt
Login

Tutor LMS <= 3.9.11 - Authenticated (Administrator+) SQL Injection via 'data' Parameter

The Tutor LMS – eLearning and online course solution plugin for WordPress is vulnerable to generic SQL Injection via the 'data' parameter in all versions up to, and including, 3.9.11 due to insufficient escaping on the user supplied parameter and lack of sufficient preparation on the existing SQL query. This makes it possible for authenticated attackers, with administrator-level access and above, to append additional SQL queries into already existing queries that can be used to extract sensitive information from the database.

Mögliche Gegenmaßnahme

Tutor LMS – eLearning and online course solution: Update to version 3.9.12, or a newer patched version

Betroffene Produkte Warnungen 0 Metriken 2 CWE 0 Referenzen 14

CNA 1 VulnDex Vulnerability Enrichment 2

Daten sind bereitgestellt durch das CVE Programm von einer CVE Numbering Authority (CNA) (Unstrukturiert).

Herstellerthemeum

≫

Produkt Tutor LMS – eLearning and online course solution

Default Statusunaffected

Version <= 3.9.11

Version 0

Status affected

VulnDex Vulnerability Enrichment

Diese Information steht angemeldeten Benutzern zur Verfügung.

Weitere Schwachstelleninformationen

SystemWordPress Plugin

≫

Produkt Tutor LMS – eLearning and online course solution

Version *-3.9.11

Zu dieser CVE wurde keine Warnung gefunden.

EPSS Metriken
Typ	Quelle	Score	Percentile
EPSS	FIRST.org	0.36%	0.28

CVSS Metriken
Quelle	Base Score	Exploit Score	Impact Score	Vector String
b15e7b5b-3da4-40ae-a43c-f7aa60e62599	4.9	0	0	CVSS:3.1/AV:N/AC:L/PR:H/UI:N/S:U/C:H/I:N/A:N

Es wurden noch keine Informationen zu CWE veröffentlicht.

https://www.wordfence.com/threat-intel/vulnerabilities/id/1e193bb9-bb16-4a77-877b-fa0ab29a6c74?source=cve

https://plugins.trac.wordpress.org/browser/tutor/tags/3.9.11/models/WithdrawModel.php#L118

https://plugins.trac.wordpress.org/browser/tutor/tags/3.9.11/models/WithdrawModel.php#L169

https://plugins.trac.wordpress.org/browser/tutor/tags/3.9.11/views/pages/withdraw_requests.php#L29

https://plugins.trac.wordpress.org/browser/tutor/tags/3.9.11/classes/Input.php#L78

https://plugins.trac.wordpress.org/browser/tutor/tags/3.9.8/models/WithdrawModel.php#L118

https://plugins.trac.wordpress.org/browser/tutor/tags/3.9.8/models/WithdrawModel.php#L169

https://plugins.trac.wordpress.org/browser/tutor/tags/3.9.8/views/pages/withdraw_requests.php#L29

https://plugins.trac.wordpress.org/browser/tutor/tags/3.9.8/classes/Input.php#L78

https://plugins.trac.wordpress.org/changeset/3565513/tutor/tags/3.9.12/models/WithdrawModel.php

https://www.wordfence.com/threat-intel/vulnerabilities/id/1e193bb9-bb16-4a77-877b-fa0ab29a6c74

Third Party Advisory

https://nvd.nist.gov/vuln/detail/CVE-2026-10736

CVE Source (NVD)

https://cveawg.mitre.org/api/cve/CVE-2026-10736

CVE Source (JSON)

https://euvd.enisa.europa.eu/vulnerability/CVE-2026-10736

EUVD

Team-orientierte Vulnerability Management Plattform

Features der Plattform

CVE-2026-10736