CVE-2021-24562

Summary

The LMS by LifterLMS – Online Course, Membership & Learning Management System Plugin for WordPress plugin before 4.21.2 was affected by an IDOR issue, allowing students to see other student answers and grades

Affected Software

VendorProductVersion RangeStatus
UnknownLMS by LifterLMS – Online Course, Membership & Learning Management System Plugin for WordPress4.21.2 < 4.21.2affected

Weaknesses

  • CWE-639: CWE-639 Authorization Bypass Through User-Controlled Key

ADP Enrichment

CVE Program Container

Additional References

References