VYPR
← All advisories
High severity7.1NVD Advisory· Published Nov 3, 2023· Updated Apr 28, 2026

CVE-2023-25990

CVE-2023-25990

Description

Improper Neutralization of Special Elements used in an SQL Command ('SQL Injection') vulnerability in Themeum Tutor LMS allows SQL Injection.This issue affects Tutor LMS: from n/a through 2.1.10.

Affected products

1
  • Themeum/Tutor Lms
    cpe:2.3:a:themeum:tutor_lms:*:*:*:*:*:wordpress:*:*
    Range: <=2.1.10

Patches

0

No patches discovered yet.

Vulnerability mechanics

AI mechanics synthesis has not run for this CVE yet.

References

1

News mentions

0

No linked articles in our index yet.