← back
CVE-2021-24562

LifterLMS < 4.21.2 - Access Other Student Grades/Answers via IDOR

EPSS 1.6%CWE-639
The LMS by LifterLMS – Online Course, Membership & Learning Management System Plugin for WordPress plugin before 4.21.2 was affected by an IDOR issue, allowing students to see other student answers and grades
Affected products
Unknown · LMS by LifterLMS – Online Course, Membership & Learning Management System Plugin for WordPress

Want to know if your infrastructure is exposed to this?

Talk to TrueHacking →
References
https://make.lifterlms.com/2021/05/17/lifterlms-version-4-21-2/https://wpscan.com/vulnerability/d45bb744-4a0d-4af0-aa16-71f7e3ea6e00