VYPR
Medium severity6.5NVD Advisory· Published Jun 22, 2023· Updated Jun 17, 2026

CVE-2023-35093

CVE-2023-35093

Description

Broken Access Control vulnerability in StylemixThemes MasterStudy LMS WordPress Plugin – for Online Courses and Education plugin <= 3.0.8 versions allows any logged-in users, such as subscribers to view the "Orders" of the plugin and get the data related to the order like email, username, and more.

AI Insight

LLM-synthesized narrative grounded in this CVE's description and references.

Affected products

2
  • Range: <=3.0.8
  • StylemixThemes/MasterStudy LMS WordPress Plugin – for Online Courses and Educationv5
    Range: n/a

Patches

Vulnerability mechanics

References

1

News mentions

0

No linked articles in our index yet.