High severity7.3NVD Advisory· Published May 16, 2024· Updated Apr 8, 2026
CVE-2024-4222
CVE-2024-4222
Description
The Tutor LMS Pro plugin for WordPress is vulnerable to unauthorized access of data, modification of data, loss of data due to a missing capability check on multiple functions in all versions up to, and including, 2.7.0. This makes it possible for unauthenticated attackers to add, modify, or delete user meta and plugin options.
AI Insight
LLM-synthesized narrative grounded in this CVE's description and references.
Affected products
3Patches
Vulnerability mechanics
References
2- www.wordfence.com/threat-intel/vulnerabilities/id/942fffb6-2719-4b70-9759-21b2d50002c5nvdThird Party Advisory
- www.themeum.com/product/tutor-lms/nvdProduct
News mentions
0No linked articles in our index yet.