VYPR
Get started
← All advisories
Medium severity5.9NVD Advisory· Published Dec 15, 2023· Updated Apr 28, 2026

CVE-2023-49829

CVE-2023-49829

Description

Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') vulnerability in Themeum Tutor LMS – eLearning and online course solution allows Stored XSS.This issue affects Tutor LMS – eLearning and online course solution: from n/a through 2.2.4.

Affected products

1
  • Themeum/Tutor Lms
    cpe:2.3:a:themeum:tutor_lms:*:*:*:*:*:wordpress:*:*
    Range: <=2.2.4

Patches

0

No patches discovered yet.

Vulnerability mechanics

AI mechanics synthesis has not run for this CVE yet.

References

1

News mentions

0

No linked articles in our index yet.