High severity8.8NVD Advisory· Published Apr 5, 2021· Updated Jun 17, 2026
CVE-2021-24184
CVE-2021-24184
Description
Several AJAX endpoints in the Tutor LMS – eLearning and online course solution WordPress plugin before 1.7.7 were unprotected, allowing students to modify course information and elevate their privileges among many other actions.
AI Insight
LLM-synthesized narrative grounded in this CVE's description and references.
Affected products
2- WordPress/Tutor LMS – eLearning and online course solutiondescription
Patches
Vulnerability mechanics
References
2- wpscan.com/vulnerability/5e85917c-7a58-49cb-b8b3-05aa18ffff3envdExploitThird Party Advisory
- www.wordfence.com/blog/2021/03/several-vulnerabilities-patched-in-tutor-lms-plugin/nvdExploitThird Party Advisory
News mentions
0No linked articles in our index yet.