mirror of
https://github.com/0xMarcio/cve.git
synced 2026-05-12 09:21:42 +02:00
0xMarcio
757 B
757 B
CVE-2023-3345
Description
The LMS by Masteriyo WordPress plugin before 1.6.8 does not have proper authorization in one some of its REST API endpoints, making it possible for any students to retrieve email addresses of other students
POC
Reference
Github
No PoCs found on GitHub currently.