cleantalk
Vulnerabilities and Security Researches

Tutor LMS – eLearning and online course solution, CVE-2025-32223

CVE, Research URL

CVE-2025-32223

Home page URL

Security reports for Tutor LMS – eLearning and online course solution

Application

Tutor LMS – eLearning and online course solution

Published on
Mar 19, 2026
Research Description
Authorization Bypass Through User-Controlled Key vulnerability in Themeum Tutor LMS tutor allows Exploiting Incorrectly Configured Access Control Security Levels.This issue affects Tutor LMS: from n/a through <= 3.9.4.
Affected versions
max 3.9.5.
Status
vulnerable
Previous vulnerability researches
Page-list (CVE-2024-47382) , Oct 03, 2024
Page-list (CVE-2026-9008) , Jun 07, 2026
Page-list (CVE-2022-4485) , Jun 07, 2024
Page-list (CVE-2025-58030) , Oct 11, 2025
New vulnerability
WPBakery Page Builder Addons by Livemesh (CVE-2023-33999) , Jun 13, 2026
Media Library File Download (CVE-2023-33999) , Jun 13, 2026
wpForo Forum (CVE-2026-4666) , Jun 13, 2026
Ads by WPQuads – Adsense Ads, Banner Ads, Popup Ads (CVE-2025-30876) , Jun 13, 2026
Ads by WPQuads – Adsense Ads, Banner Ads, Popup Ads (CVE-2026-42744) , Jun 13, 2026