Vulnerabilities > Stylemixthemes > Masterstudy LMS > Medium
| DATE | CVE | VULNERABILITY TITLE | RISK |
|---|---|---|---|
| 2024-05-02 | CVE-2024-3942 | Missing Authorization vulnerability in Stylemixthemes Masterstudy LMS The MasterStudy LMS WordPress Plugin – for Online Courses and Education plugin for WordPress is vulnerable to unauthorized access, modification, and loss of data due to a missing capability check on several functions in versions up to, and including, 3.3.8. | 5.4 |
| 2023-06-22 | CVE-2023-35093 | Unspecified vulnerability in Stylemixthemes Masterstudy LMS Broken Access Control vulnerability in StylemixThemes MasterStudy LMS WordPress Plugin – for Online Courses and Education plugin <= 3.0.8 versions allows any logged-in users, such as subscribers to view the "Orders" of the plugin and get the data related to the order like email, username, and more. | 6.5 |
| 2023-06-22 | CVE-2023-35090 | Unspecified vulnerability in Stylemixthemes Masterstudy LMS Auth. | 5.4 |