← Back

Themeum

themeum

80 CVEs • 7 products

Products (7)

Click to collapse
Toggle
Tutor Lms
tutor_lms
49 CVEs
Wp Crowdfunding
wp_crowdfunding
11 CVEs
Qubely
qubely
6 CVEs
Wp Page Builder
wp_page_builder
4 CVEs
Tutor Lms Elementor Addons
tutor_lms_elementor_addons
4 CVEs
Droip
droip
4 CVEs
Tutor Lms Migration Tool
tutor_lms_-_migration_tool
2 CVEs

CVEs (80)

CVE
VENDORS
PRODUCTS
UPDATED
PUBLISHED
CVSS
CVE-2023-3133
1Themeum
1Tutor Lms
Nov 21, 2024
Jul 4, 2023
N/A· v4
7.5 HIGH· v3
N/A· v2
The Tutor LMS WordPress plugin before 2.2.1 does not implement adequate permission checks for REST API endpoints, allowing unauthenticated attackers to access information from Lessons that should not be publicly availabl...Show more
The Tutor LMS WordPress plugin before 2.2.1 does not implement adequate permission checks for REST API endpoints, allowing unauthenticated attackers to access information from Lessons that should not be publicly available.Show less
CVE-2023-0236
1Themeum
1Tutor Lms
Mar 25, 2025
Feb 6, 2023
N/A· v4
6.1 MEDIUM· v3
N/A· v2
The Tutor LMS WordPress plugin before 2.0.10 does not sanitise and escape the reset_key and user_id parameters before outputting then back in attributes, leading to Reflected Cross-Site Scripting which could be used agai...Show more
The Tutor LMS WordPress plugin before 2.0.10 does not sanitise and escape the reset_key and user_id parameters before outputting then back in attributes, leading to Reflected Cross-Site Scripting which could be used against high privilege users such as adminShow less
CVE-2022-3830
1Themeum
1Wp Page Builder
Apr 24, 2025
Dec 5, 2022
N/A· v4
4.8 MEDIUM· v3
N/A· v2
The WP Page Builder WordPress plugin through 1.2.8 does not sanitise and escape some of its settings, which could allow high privilege users such as admin to perform Stored Cross-Site Scripting attacks even when the unfi...Show more
The WP Page Builder WordPress plugin through 1.2.8 does not sanitise and escape some of its settings, which could allow high privilege users such as admin to perform Stored Cross-Site Scripting attacks even when the unfiltered_html capability is disallowed (for example in multisite setup).Show less
CVE-2022-40963
1Themeum
1Wp Page Builder
Nov 21, 2024
Nov 18, 2022
N/A· v4
5.4 MEDIUM· v3
N/A· v2
Multiple Auth. (author+) Stored Cross-Site Scripting (XSS) vulnerabilities in WP Page Builder plugin <= 1.2.6 on WordPress.
CVE-2022-2563
1Themeum
1Tutor Lms
May 13, 2025
Oct 17, 2022
N/A· v4
4.8 MEDIUM· v3
N/A· v2
The Tutor LMS WordPress plugin before 2.0.10 does not escape some course parameters, which could allow high privilege users such as admin to perform Stored Cross-Site Scripting attacks even when the unfiltered_html capab...Show more
The Tutor LMS WordPress plugin before 2.0.10 does not escape some course parameters, which could allow high privilege users such as admin to perform Stored Cross-Site Scripting attacks even when the unfiltered_html capability is disallowed (for example in multisite setup)Show less
CVE-2021-25017
1Themeum
1Tutor Lms
Nov 21, 2024
Jan 24, 2022
N/A· v4
6.1 MEDIUM· v3
4.3 MEDIUM· v2
The Tutor LMS WordPress plugin before 1.9.12 does not escape the search parameter before outputting it back in an attribute in an admin page, leading to a Reflected Cross-Site Scripting
CVE-2021-25013
1Themeum
1Qubely
Nov 21, 2024
Jan 24, 2022
N/A· v4
6.5 MEDIUM· v3
4.0 MEDIUM· v2
The Qubely WordPress plugin before 1.7.8 does not have authorisation and CSRF check on the qubely_delete_saved_block AJAX action, and does not ensure that the block to be deleted belong to the plugin, as a result, any au...Show more
The Qubely WordPress plugin before 1.7.8 does not have authorisation and CSRF check on the qubely_delete_saved_block AJAX action, and does not ensure that the block to be deleted belong to the plugin, as a result, any authenticated users, such as subscriber can delete arbitrary postsShow less
CVE-2021-24873
1Themeum
1Tutor Lms
Nov 21, 2024
Nov 23, 2021
N/A· v4
6.1 MEDIUM· v3
4.3 MEDIUM· v2
The Tutor LMS WordPress plugin before 1.9.11 does not sanitise and escape user input before outputting back in attributes in the Student Registration page, leading to a Reflected Cross-Site Scripting issue
CVE-2021-24740
1Themeum
1Tutor Lms
Nov 21, 2024
Oct 18, 2021
N/A· v4
4.8 MEDIUM· v3
3.5 LOW· v2
The Tutor LMS WordPress plugin before 1.9.9 does not escape some of its settings before outputting them in attributes, which could allow high privilege users to perform Cross-Site Scripting attacks even when the unfilter...Show more
The Tutor LMS WordPress plugin before 1.9.9 does not escape some of its settings before outputting them in attributes, which could allow high privilege users to perform Cross-Site Scripting attacks even when the unfiltered_html capability is disallowed.Show less
CVE-2021-24455
1Themeum
1Tutor Lms
Nov 21, 2024
Aug 2, 2021
N/A· v4
5.4 MEDIUM· v3
3.5 LOW· v2
The Tutor LMS – eLearning and online course solution WordPress plugin before 1.9.2 did not escape the Summary field of Announcements (when outputting it in an attribute), which can be created by users as low as Tutor Ins...Show more
The Tutor LMS – eLearning and online course solution WordPress plugin before 1.9.2 did not escape the Summary field of Announcements (when outputting it in an attribute), which can be created by users as low as Tutor Instructor. This lead to a Stored Cross-Site Scripting issue, which is triggered when viewing the Announcements list, and could result in privilege escalation when viewed by an admin.Show less
CVE-2021-24242
1Themeum
1Tutor Lms
Nov 21, 2024
Apr 22, 2021
N/A· v4
3.8 LOW· v3
5.5 MEDIUM· v2
The Tutor LMS – eLearning and online course solution WordPress plugin before 1.8.8 is affected by a local file inclusion vulnerability through the maliciously constructed sub_page parameter of the plugin's Tools, allowin...Show more
The Tutor LMS – eLearning and online course solution WordPress plugin before 1.8.8 is affected by a local file inclusion vulnerability through the maliciously constructed sub_page parameter of the plugin's Tools, allowing high privilege users to include any local php fileShow less
CVE-2021-24208
1Themeum
1Wp Page Builder
Nov 21, 2024
Apr 5, 2021
N/A· v4
5.4 MEDIUM· v3
3.5 LOW· v2
The editor of the WP Page Builder WordPress plugin before 1.2.4 allows lower-privileged users to insert unfiltered HTML, including JavaScript, into pages via the “Raw HTML” widget and the “Custom HTML” widgets (though th...Show more
The editor of the WP Page Builder WordPress plugin before 1.2.4 allows lower-privileged users to insert unfiltered HTML, including JavaScript, into pages via the “Raw HTML” widget and the “Custom HTML” widgets (though the custom HTML widget requires sending a crafted request - it appears that this widget uses some form of client side validation but not server side validation), all of which are added via the “page_builder_data” parameter when performing the “wppb_page_save” AJAX action. It is also possible to insert malicious JavaScript via the “wppb_page_css” parameter (this can be done by closing out the style tag and opening a script tag) when performing the “wppb_page_save” AJAX action.Show less
CVE-2021-24207
1Themeum
1Wp Page Builder
Nov 21, 2024
Apr 5, 2021
N/A· v4
4.3 MEDIUM· v3
4.0 MEDIUM· v2
By default, the WP Page Builder WordPress plugin before 1.2.4 allows subscriber-level users to edit and make changes to any and all posts pages - user roles must be specifically blocked from editing posts and pages.
CVE-2021-24186
1Themeum
1Tutor Lms
Nov 21, 2024
Apr 5, 2021
N/A· v4
6.5 MEDIUM· v3
4.0 MEDIUM· v2
The tutor_answering_quiz_question/get_answer_by_id function pair from the Tutor LMS – eLearning and online course solution WordPress plugin before 1.8.3 was vulnerable to UNION based SQL injection that could be exploited...Show more
The tutor_answering_quiz_question/get_answer_by_id function pair from the Tutor LMS – eLearning and online course solution WordPress plugin before 1.8.3 was vulnerable to UNION based SQL injection that could be exploited by students.Show less
CVE-2021-24185
1Themeum
1Tutor Lms
Nov 21, 2024
Apr 5, 2021
N/A· v4
6.5 MEDIUM· v3
4.0 MEDIUM· v2
The tutor_place_rating AJAX action from the Tutor LMS – eLearning and online course solution WordPress plugin before 1.7.7 was vulnerable to blind and time based SQL injections that could be exploited by students.
CVE-2021-24184
1Themeum
1Tutor Lms
Nov 21, 2024
Apr 5, 2021
N/A· v4
8.8 HIGH· v3
6.5 MEDIUM· v2
Several AJAX endpoints in the Tutor LMS – eLearning and online course solution WordPress plugin before 1.7.7 were unprotected, allowing students to modify course information and elevate their privileges among many other...Show more
Several AJAX endpoints in the Tutor LMS – eLearning and online course solution WordPress plugin before 1.7.7 were unprotected, allowing students to modify course information and elevate their privileges among many other actions.Show less
CVE-2021-24183
1Themeum
1Tutor Lms
Nov 21, 2024
Apr 5, 2021
N/A· v4
6.5 MEDIUM· v3
4.0 MEDIUM· v2
The tutor_quiz_builder_get_question_form AJAX action from the Tutor LMS – eLearning and online course solution WordPress plugin before 1.8.3 was vulnerable to UNION based SQL injection that could be exploited by students...Show more
The tutor_quiz_builder_get_question_form AJAX action from the Tutor LMS – eLearning and online course solution WordPress plugin before 1.8.3 was vulnerable to UNION based SQL injection that could be exploited by students.Show less
CVE-2021-24182
1Themeum
1Tutor Lms
Nov 21, 2024
Apr 5, 2021
N/A· v4
6.5 MEDIUM· v3
4.0 MEDIUM· v2
The tutor_quiz_builder_get_answers_by_question AJAX action from the Tutor LMS – eLearning and online course solution WordPress plugin before 1.8.3 was vulnerable to UNION based SQL injection that could be exploited by st...Show more
The tutor_quiz_builder_get_answers_by_question AJAX action from the Tutor LMS – eLearning and online course solution WordPress plugin before 1.8.3 was vulnerable to UNION based SQL injection that could be exploited by students.Show less
CVE-2021-24181
1Themeum
1Tutor Lms
Nov 21, 2024
Apr 5, 2021
N/A· v4
6.5 MEDIUM· v3
4.0 MEDIUM· v2
The tutor_mark_answer_as_correct AJAX action from the Tutor LMS – eLearning and online course solution WordPress plugin before 1.7.7 was vulnerable to blind and time based SQL injections that could be exploited by studen...Show more
The tutor_mark_answer_as_correct AJAX action from the Tutor LMS – eLearning and online course solution WordPress plugin before 1.7.7 was vulnerable to blind and time based SQL injections that could be exploited by students.Show less
CVE-2020-8615
1Themeum
1Tutor Lms
Nov 21, 2024
Feb 4, 2020
N/A· v4
6.5 MEDIUM· v3
2.6 LOW· v2
A CSRF vulnerability in the Tutor LMS plugin before 1.5.3 for WordPress can result in an attacker approving themselves as an instructor and performing other malicious actions (such as blocking legitimate instructors).