LMS by LifterLMS Plugin: IDOR Vulnerability Exposes Student Answers and Grades

LMS by LifterLMS Plugin: IDOR Vulnerability Exposes Student Answers and Grades

CVE-2021-24562 · HIGH Severity

CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:N/A:N

The LMS by LifterLMS – Online Course, Membership & Learning Management System Plugin for WordPress plugin before 4.21.2 was affected by an IDOR issue, allowing students to see other student answers and grades

Learn more about our Wordpress Pen Testing.