cleantalk
Vulnerabilities and Security Researches

MasterStudy LMS WordPress Plugin – for Online Courses and Education, CVE-2025-59576

CVE, Research URL

CVE-2025-59576

Home page URL

Security reports for MasterStudy LMS WordPress Plugin – for Online Courses and Education

Application

MasterStudy LMS WordPress Plugin – for Online Courses and Education

Published on
Sep 23, 2025
Research Description
Missing Authorization vulnerability in Stylemix MasterStudy LMS masterstudy-lms-learning-management-system allows Exploiting Incorrectly Configured Access Control Security Levels.This issue affects MasterStudy LMS: from n/a through <= 3.6.20.
Affected versions
max 3.6.21.
Status
vulnerable
Previous vulnerability researches
Logo Showcase with Logo Carousel, Logo Slider &amp; Logo Grid (937fa12bf04e5d89c531196c0620e5308c3342e1) , Jun 07, 2024
New vulnerability
TZ Plus Gallery (CVE-2025-57974) , Apr 24, 2026
User Meta &#8211; User Profile Builder and User management plugin (CVE-2025-9693) , Apr 24, 2026
Gutenberg Blocks &#8211; PublishPress Blocks Gutenberg Editor Plugin (CVE-2025-8588) , Apr 24, 2026
WooCommerce Affiliate Plugin &#8211; Coupon Affiliates (CVE-2025-59567) , Apr 24, 2026
PowerPack Addons for Elementor (Free Widgets, Extensions and Templates) (CVE-2025-8388) , Apr 24, 2026