Show filters
1 Total Results
Displaying 1-1 of 1
Sort by:
Attacker Value
Unknown

CVE-2022-2034

Disclosure Date: August 29, 2022 (last updated October 08, 2023)
The Sensei LMS WordPress plugin before 4.5.0 does not have proper permissions set in one of its REST endpoint, allowing unauthenticated users to access private messages sent to teachers
Attack Vector: NetworkPrivileges: NoneUser Interaction: None
0
0