Stylemixthemes Masterstudy Lms Pro
6 CVEs affecting Stylemixthemes Masterstudy Lms Pro. Latest disclosed: 2026-06-04. Critical: 0, High: 4.
| CVE | Severity | Score | Published | Summary |
|---|---|---|---|---|
CVE-2025-4800 | High | 8.8 | 2025-05-28 | The MasterStudy LMS Pro plugin for WordPress is vulnerable to arbitrary file uploads due to a missing file type validation in the stm_lms_add_assignment_attach… |
CVE-2025-64214 | High | 7.5 | 2025-12-18 | Missing Authorization vulnerability in StylemixThemes MasterStudy LMS Pro masterstudy-lms-learning-management-system-pro allows Accessing Functionality Not Pro… |
CVE-2025-64213 | High | 7.5 | 2025-12-18 | Insertion of Sensitive Information Into Sent Data vulnerability in StylemixThemes MasterStudy LMS Pro masterstudy-lms-learning-management-system-pro allows Ret… |
CVE-2025-7438 | High | 7.5 | 2025-07-18 | The MasterStudy LMS Pro plugin for WordPress is vulnerable to arbitrary file uploads due to insufficient file type validation in the 'install_and_activate_plug… |
CVE-2026-8653 | Medium | 6.5 | 2026-06-04 | The MasterStudy LMS Pro Plus plugin for WordPress is vulnerable to generic SQL Injection via the 'columns' parameter in all versions up to, and including, 4.8… |
CVE-2025-64212 | Medium | 5.4 | 2025-10-29 | Missing Authorization vulnerability in StylemixThemes MasterStudy LMS Pro masterstudy-lms-learning-management-system-pro allows Exploiting Incorrectly Configur… |