Broken Access Control vulnerability in StylemixThemes MasterStudy LMS WordPress Plugin – for Online Courses and Education plugin <= 3.0.8 versions allows any logged-in users, such as subscribers to view the "Orders" of the plugin and get the data related to the order like email, username, and more.
References
History
No history.
MITRE Information
Status: PUBLISHED
Assigner: Patchstack
Published: 2023-06-22T11:07:21.020Z
Updated: 2023-06-22T11:07:21.020Z
Reserved: 2023-06-13T15:10:42.889Z
Link: CVE-2023-35093
JSON object: View
NVD Information
Status : Analyzed
Published: 2023-06-22T12:15:12.060
Modified: 2023-06-28T20:56:38.603
Link: CVE-2023-35093
JSON object: View
Redhat Information
No data.
CWE