MasterStudy LMS WordPress Plugin – for Online Courses and Education, CVE-2025-64366
- CVE, Research URL
- Home page URL
-
Security reports for MasterStudy LMS WordPress Plugin – for Online Courses and Education
- Published on
- Oct 31, 2025
- Research Description
- Improper Neutralization of Special Elements used in an SQL Command ('SQL Injection') vulnerability in Stylemix MasterStudy LMS masterstudy-lms-learning-management-system allows Blind SQL Injection.This issue affects MasterStudy LMS: from n/a through <= 3.6.27.
- Affected versions
-
max 3.6.27.
- Status
-
vulnerable
| Previous vulnerability researches |
|---|
| s2member Secure File Browser (CVE-2013-6837) , Jun 07, 2024 |
| s2member Secure File Browser (3dc58532344f8d166072616889dc5a9ad35c105e) , Jun 07, 2024 |