Vulnerabilities > Stylemixthemes > Masterstudy LMS > 3.1.15
| DATE | CVE | VULNERABILITY TITLE | RISK |
|---|---|---|---|
| 2025-01-02 | CVE-2024-37093 | Cross-Site Request Forgery (CSRF) vulnerability in Stylemixthemes Masterstudy LMS Cross-Site Request Forgery (CSRF) vulnerability in StylemixThemes MasterStudy LMS allows Cross Site Request Forgery.This issue affects MasterStudy LMS: from n/a through 3.2.1. | 8.8 |
| 2024-11-01 | CVE-2024-37094 | Unspecified vulnerability in Stylemixthemes Masterstudy LMS Missing Authorization vulnerability in StylemixThemes MasterStudy LMS allows Exploiting Incorrectly Configured Access Control Security Levels. This issue affects MasterStudy LMS: from n/a through 3.2.12. | 9.8 |
| 2024-07-22 | CVE-2024-5973 | Unspecified vulnerability in Stylemixthemes Masterstudy LMS The MasterStudy LMS WordPress Plugin WordPress plugin before 3.3.24 does not prevent students from creating instructor accounts, which could be used to get access to functionalities they shouldn't have. | 8.8 |
| 2024-05-02 | CVE-2024-3942 | Missing Authorization vulnerability in Stylemixthemes Masterstudy LMS The MasterStudy LMS WordPress Plugin – for Online Courses and Education plugin for WordPress is vulnerable to unauthorized access, modification, and loss of data due to a missing capability check on several functions in versions up to, and including, 3.3.8. | 5.4 |
| 2024-03-13 | CVE-2024-2106 | Unspecified vulnerability in Stylemixthemes Masterstudy LMS The MasterStudy LMS WordPress Plugin – for Online Courses and Education plugin for WordPress is vulnerable to Information Exposure in versions up to, and including, 3.2.10. | 7.5 |