exploitDog

CVE-2025-64366

Опубликовано: 31 окт. 2025

Источник: nvd

CVSS3: 7.6

EPSS Низкий

Описание

Improper Neutralization of Special Elements used in an SQL Command ('SQL Injection') vulnerability in Stylemix MasterStudy LMS masterstudy-lms-learning-management-system allows Blind SQL Injection.This issue affects MasterStudy LMS: from n/a through <= 3.6.27.

Ссылки

https://patchstack.com/database/Wordpress/Plugin/masterstudy-lms-learning-management-system/vulnerability/wordpress-masterstudy-lms-plugin-3-6-27-sql-injection-vulnerability?_s_id=cve

EPSS

Процентиль: 13%

0.00044

Низкий

7.6 High

CVSS3

Дефекты

CWE-89

Связанные уязвимости

GHSA-xfhv-2m8j-xxfc

CVSS3: 7.6

github

3 месяца назад

Improper Neutralization of Special Elements used in an SQL Command ('SQL Injection') vulnerability in Stylemix MasterStudy LMS masterstudy-lms-learning-management-system allows Blind SQL Injection.This issue affects MasterStudy LMS: from n/a through <= 3.6.27.

EPSS

Процентиль: 13%

0.00044

Низкий

7.6 High

CVSS3

Дефекты

CWE-89