VYPR
Low severity3.8NVD Advisory· Published Apr 22, 2021· Updated Jun 17, 2026

CVE-2021-24242

CVE-2021-24242

Description

The Tutor LMS – eLearning and online course solution WordPress plugin before 1.8.8 is affected by a local file inclusion vulnerability through the maliciously constructed sub_page parameter of the plugin's Tools, allowing high privilege users to include any local php file

AI Insight

LLM-synthesized narrative grounded in this CVE's description and references.

Affected products

2
  • Range: <1.8.8
  • Themeum/Tutor LMS – eLearning and online course solutionv5
    Range: 1.8.8

Patches

Vulnerability mechanics

References

1

News mentions

0

No linked articles in our index yet.