CVE-2022-2034

Description

The Sensei LMS WordPress plugin before 4.5.0 does not have proper permissions set in one of its REST endpoint, allowing unauthenticated users to access private messages sent to teachers

NVD
Severity: MEDIUM
CVE ID: CVE-2022-2034
CVSS Score: 5.3
CVSS Metrics: CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:L/I:N/A:N

Refrence: NVD MITRE

Proof Of Concept

Nuclei Templates for CVE-2022-2034

Refrence: Project Discovery GitHub

Content on GitHub

nidhi7598 | watchers:1

frameworks_native_AOSP_10_r33_CVE-2022-20344

Refrence: GitHub

ShaikUsaf | watchers:1

packages_apps_settings_AOSP10_r33_CVE-2022-20347

Refrence: GitHub

nidhi7598 | watchers:0

packages_apps_Settings_AOSP_10_r33_CVE-2022-20347

Refrence: GitHub

Trinadh465 | watchers:0

packages_apps_Settings_AOSP10_r33_CVE-2022-20347

Refrence: GitHub

hshivhare67 | watchers:0

platform_packages_apps_settings_AOSP10_r33_CVE-2022-20347

Refrence: GitHub

Description​

Proof Of Concept​

Content on GitHub​

Description

Proof Of Concept

Content on GitHub