Tutor LMS

Unauthenticated SQL Injection via rating_filter vulnerability <= 2.7.6

9.3

21 November, 2024

User Registration Setting Bypass to Unauthorized User Registration vulnerability <= 2.7.6

5.3

21 November, 2024

CrossSite Request Forgery via 'addon_enable_disable' vulnerability <= 2.7.4

4.3

10 September, 2024

SQL Injection vulnerability <= 2.7.2

7.6

16 August, 2024

Cross Site Scripting (XSS) vulnerability <= 2.7.3

6.5

9 August, 2024