CVE-2024-43158
- EPSS 0.52%
- Veröffentlicht 01.11.2024 15:15:40
- Zuletzt bearbeitet 23.04.2026 15:18:49
Missing Authorization vulnerability in masteriyo Masteriyo - LMS learning-management-system.This issue affects Masteriyo - LMS: from n/a through <= 1.11.4.
CVE-2024-43159
- EPSS 0.41%
- Veröffentlicht 01.11.2024 15:15:40
- Zuletzt bearbeitet 23.04.2026 15:18:50
Missing Authorization vulnerability in masteriyo Masteriyo - LMS learning-management-system.This issue affects Masteriyo - LMS: from n/a through <= 1.11.6.
CVE-2024-10000
- EPSS 0.26%
- Veröffentlicht 29.10.2024 06:15:13
- Zuletzt bearbeitet 17.05.2025 01:44:25
The Masteriyo LMS – eLearning and Online Course Builder for WordPress plugin for WordPress is vulnerable to Stored Cross-Site Scripting via the question's content parameter in all versions up to, and including, 1.13.3 due to insufficient input saniti...
CVE-2024-10008
- EPSS 0.62%
- Veröffentlicht 29.10.2024 06:15:13
- Zuletzt bearbeitet 17.05.2025 01:43:57
The Masteriyo LMS – eLearning and Online Course Builder for WordPress plugin for WordPress is vulnerable to unauthorized user profile modification due to missing authorization checks on the /wp-json/masteriyo/v1/users/$id REST API endpoint in all ver...
CVE-2024-43239
- EPSS 0.29%
- Veröffentlicht 18.08.2024 22:15:08
- Zuletzt bearbeitet 23.04.2026 15:18:51
Authorization Bypass Through User-Controlled Key vulnerability in masteriyo Masteriyo - LMS learning-management-system.This issue affects Masteriyo - LMS: from n/a through <= 1.11.4.
CVE-2024-24882
- EPSS 2.11%
- Veröffentlicht 17.05.2024 09:15:24
- Zuletzt bearbeitet 29.04.2026 10:16:31
Incorrect Privilege Assignment vulnerability in masteriyo Masteriyo - LMS learning-management-system.This issue affects Masteriyo - LMS: from n/a through <= 1.7.2.