cleantalk
Vulnerabilities and Security Researches

MasterStudy LMS WordPress Plugin – for Online Courses and Education, CVE-2025-59577

CVE, Research URL

CVE-2025-59577

Home page URL

Security reports for MasterStudy LMS WordPress Plugin – for Online Courses and Education

Application

MasterStudy LMS WordPress Plugin – for Online Courses and Education

Published on
Sep 23, 2025
Research Description
Concurrent Execution using Shared Resource with Improper Synchronization ('Race Condition') vulnerability in Stylemix MasterStudy LMS masterstudy-lms-learning-management-system allows Leveraging Race Conditions.This issue affects MasterStudy LMS: from n/a through <= 3.6.20.
Affected versions
max 3.6.21.
Status
vulnerable
Previous vulnerability researches
Pop ups, Exit intent popups, email popups, banners, bars, countdowns and cart savers &#8211; Promolayer (CVE-2024-3602) , Jun 21, 2024
New vulnerability
TZ Plus Gallery (CVE-2025-57974) , Apr 24, 2026
User Meta &#8211; User Profile Builder and User management plugin (CVE-2025-9693) , Apr 24, 2026
Gutenberg Blocks &#8211; PublishPress Blocks Gutenberg Editor Plugin (CVE-2025-8588) , Apr 24, 2026
WooCommerce Affiliate Plugin &#8211; Coupon Affiliates (CVE-2025-59567) , Apr 24, 2026
PowerPack Addons for Elementor (Free Widgets, Extensions and Templates) (CVE-2025-8388) , Apr 24, 2026