cleantalk
Vulnerabilities and Security Researches

MasterStudy LMS WordPress Plugin – for Online Courses and Education, CVE-2026-42730

CVE, Research URL

CVE-2026-42730

Home page URL

Security reports for MasterStudy LMS WordPress Plugin – for Online Courses and Education

Application

MasterStudy LMS WordPress Plugin – for Online Courses and Education

Published on
May 27, 2026
Research Description
Improper Neutralization of Special Elements used in an SQL Command ('SQL Injection') vulnerability in Stylemix MasterStudy LMS masterstudy-lms-learning-management-system allows Blind SQL Injection.This issue affects MasterStudy LMS: from n/a through <= 3.7.29.
Affected versions
max 3.7.30.
Status
vulnerable
Previous vulnerability researches
Insert Headers and Footers Code &#8211; HT Script (CVE-2025-2779) , Apr 03, 2025
Insert Headers and Footers Code &#8211; HT Script (CVE-2025-12112) , Nov 11, 2025
WPCode &#8211; Insert Headers and Footers + Custom Code Snippets &#8211; WordPress Code Manager (CVE-2023-0328) , Jun 06, 2024
WPCode &#8211; Insert Headers and Footers + Custom Code Snippets &#8211; WordPress Code Manager (CVE-2023-1624) , Jun 06, 2024
WPCode &#8211; Insert Headers and Footers + Custom Code Snippets &#8211; WordPress Code Manager (CVE-2023-3524) , Jun 06, 2024
New vulnerability
WPBakery Page Builder Addons by Livemesh (CVE-2026-2030) , May 28, 2026
WPBakery Page Builder Addons by Livemesh (CVE-2026-3895) , May 28, 2026
LiteSpeed Cache (CVE-2026-3375) , May 28, 2026
WP Search Analytics (CVE-2026-27357) , May 28, 2026
Sheets to WP Table Live Sync &#8211; WordPress Table Plugin with Google Sheets Integration (CVE-2026-24582) , May 28, 2026