Description
WordPress Plugin Tutor LMS-eLearning and online course solution is prone to a security bypass vulnerability. Exploiting this issue may allow attackers to perform otherwise restricted actions and subsequently add, modify, or delete data. WordPress Plugin Tutor LMS-eLearning and online course solution version 2.7.0 is vulnerable; prior versions may also be affected.
Remediation
Update to plugin version 2.7.1 or latest
References
Related Vulnerabilities
WordPress Plugin Tagregator Cross-Site Scripting (0.6)
Internet Information Services Other Vulnerability (CVE-2001-0507)
WordPress Plugin Companion Revision Manager-Revision Control Unspecified Vulnerability (1.3)
WordPress Plugin Style Kits-Advanced Theme Styles for Elementor Cross-Site Request Forgery (1.8.0)
Atlassian Jira CVE-2019-20899 Vulnerability (CVE-2019-20899)