Question 1

What are the vulnerabilities in Tutor LMS – eLearning and online course solution plugin?

Accepted Answer

What are the vulnerabilities in Tutor LMS – eLearning and online course solution plugin?

The vulnerabilities in Tutor LMS include an Insecure Direct Object Reference (IDOR) allowing deletion of quiz attempts by authenticated instructors and above, and a SQL Injection vulnerability exploitable by authenticated administrators and higher. These issues can compromise site security by allowing unauthorized access and data extraction.

Question 2

How can these vulnerabilities affect my WordPress site?

Accepted Answer

How can these vulnerabilities affect my WordPress site?

These vulnerabilities enable attackers with specific user roles to delete quiz attempts and execute malicious SQL queries, potentially leading to data loss, unauthorized access to sensitive information, and disruption of site functionality. It's crucial to mitigate these risks promptly to protect your website.

Question 3

Which versions of Tutor LMS are affected by these vulnerabilities?

Accepted Answer

Which versions of Tutor LMS are affected by these vulnerabilities?

Versions up to and including 2.7.1 of Tutor LMS are affected. Users are advised to update to version 2.7.2 or newer, which includes patches for these vulnerabilities.

Question 4

What immediate actions should I take to protect my site?

Accepted Answer

What immediate actions should I take to protect my site?

Immediate action involves updating the Tutor LMS plugin to the latest version (2.7.2) to mitigate the risk of exploitation. Monitor plugin logs for any suspicious activity and consider temporarily disabling the plugin until it's updated.

Question 5

How can I check if my site has been compromised?

Accepted Answer

How can I check if my site has been compromised?

Monitor plugin logs and website behavior for any unusual quiz deletions or unexpected SQL queries. Anomalies in these areas may indicate a compromise. Regular monitoring and updating are crucial for maintaining site security.

Question 6

Should I consider using alternative plugins temporarily?

Accepted Answer

Should I consider using alternative plugins temporarily?

Considering alternative plugins temporarily may be wise until Tutor LMS is updated. This precautionary measure ensures continued functionality while mitigating risks associated with unpatched vulnerabilities.

Question 7

Why is staying updated on plugin vulnerabilities important?

Accepted Answer

Why is staying updated on plugin vulnerabilities important?

Staying updated ensures your WordPress site remains secure against emerging threats. Prompt updates to plugins like Tutor LMS mitigate vulnerabilities and protect sensitive data from exploitation by malicious actors.

Question 8

How can I ensure ongoing security for my WordPress site?

Accepted Answer

How can I ensure ongoing security for my WordPress site?

Regularly updating all plugins, themes, and WordPress core to their latest versions is essential. Implementing strong password policies, monitoring site activity, and using security plugins further enhance site security.

Question 9

Who discovered these vulnerabilities?

Accepted Answer

Who discovered these vulnerabilities?

The vulnerabilities were identified and reported by security researchers Thanh Nam Tran and wesley. Their findings prompted the release of patches in version 2.7.2 of Tutor LMS to address these security issues.

Question 10

Where can I find more information about these vulnerabilities?

Accepted Answer

Where can I find more information about these vulnerabilities?

For more detailed information, including technical advisories and steps to secure your site, refer to the Wordfence advisories for CVE-2024-5438 and CVE-2024-4902. These resources provide comprehensive insights into the vulnerabilities and their remediation steps.

SQL Injection

Tutor LMS – eLearning and online course solution Vulnerability – Authenticated (Instructor+) Insecure Direct Object Reference to Arbitrary Quiz Attempt Deletion & Authenticated (Administrator+) SQL Injection – CVE-2024-5438, CVE-2024-4902 | WordPress Plugin Vulnerability Report

Unlimited Elements For Elementor (Free Widgets, Addons, Templates) Vulnerability – Authenticated (Contributor+) Information Exposure, Blind SQL Injection – CVE-2024-35674, CVE-2024-5329 | WordPress Plugin Vulnerability Report

Email Subscribers by Icegram Express Vulnerability – Unauthenticated SQL Injection via hash – CVE-2024-4295 | WordPress Plugin Vulnerability Report

Search & Replace Vulnerability – Authenticated (Administrator+) SQL injection – CVE-2024-0756 | WordPress Plugin Vulnerability Report

Post SMTP Vulnerability – Authenticated (Administrator+) SQL Injection – CVE-2024-5207 | WordPress Plugin Vulnerability Report

Media Library Assistant Vulnerability – Authenticated (Contributor+) SQL Injection via Shortcode & Reflected Cross-Site Scripting via lang – CVE-2024-3518 & CVE-2024-3519 | WordPress Plugin Vulnerability Report

Tutor LMS Vulnerability – Multiple Vulnerabilities – CVE-2024-4279, CVE-2024-4318, CVE-2024-4223 | WordPress Plugin Vulnerability Report

Timetable and Event Schedule by MotoPress Vulnerability – Authenticated SQL Injection – CVE-2024-3342 | WordPress Plugin Vulnerability Report

WP ULike Vulnerability– Most Advanced WordPress Marketing Toolkit – Multiple Vulnerabilities – Multiple CVEs | WordPress Plugin Vulnerability Report

WP Show Posts Vulnerability – Improper Authorization to Information Exposure – CVE-2023-6731 | WordPress Plugin Vulnerability Report

Recent Blog Posts

LiteSpeed Cache Vulnerability – Unauthenticated Sensitive Information Exposure via Log Files – CVE-2024-44000 | WordPress Plugin Vulnerability Report

Elementor Addon Elements Vulnerability – Authenticated (Contributor+) Stored Cross-Site Scripting via Multiple Parameters – CVE-2024-4401, CVE-2024-7122 | WordPress Plugin Vulnerability Report

The Post Grid – Shortcode, Gutenberg Blocks and Elementor Addon for Post Grid Vulnerability – Authenticated (Contributor+) Information Disclosure – CVE-2024-7418 | WordPress Plugin Vulnerability Report

Additional Resources

About Your WP Guy