CVE-2022-0441

CVE-2022-0441: MasterStudy LMS < 2.7.6 - Unauthenticated Admin Account Creation

Vendor Unknown
Product MasterStudy LMS – WordPress LMS Plugin
Weakness CWE-269
Published March 7, 2022
Last update August 2, 2024

CVSS base score

What the vulnerability does

01Description

The MasterStudy LMS WordPress plugin before 2.7.6 does to validate some parameters given when registering a new account, allowing unauthenticated users to register as an admin

Key dates

02Disclosure timeline

March 7, 2022 CVE published
August 2, 2024 Record updated