Tutor LMS Pro

Vulnerabilities 10Slug tutor-proLatest version 1.0Plugin page →

Minimum safe version

3.9.9

Update to 3.9.9 or later to address 9 fixable vulnerabilities

Latest available1.0 ✗⚠ 1 vulnerability has no fix

Medium 5.4

2025-10-25< 3.9.0

Tutor LMS Pro – eLearning and online course solution <= 3.8.3 - Authenticated (Subscriber+) Insecure Direct Object Reference to View/Edit Other Assignments

EUVD Wordfence CVE

N/A Unfixed

2026-01-13≤ 3.8.3

Tutor LMS Pro <= 3.9.6 - Unauthenticated SQL Injection

Wordfence CVE

N/A

2026-03-09< 3.9.6

Tutor LMS Pro <= 3.9.5 - Authentication Bypass via Social Login

Wordfence CVE

High 8.1

2026-03-25< 3.9.9

CVE-2026-25406

CVE Wordfence

High 8.8

2025-08-13< 3.7.1

WordPress Tutor LMS Pro Plugin <= 3.7.0 is vulnerable to SQL Injection

EUVD Patchstack Wordfence CVE

High 7.1

2024-08-30< 2.7.3

CVE-2024-5784

CVE Patchstack Wordfence

Critical 9.8

2024-05-16< 2.7.1

CVE-2024-4223

CVE Patchstack Wordfence

High 8.2

2024-05-16< 2.7.1

CVE-2024-4222

CVE Patchstack Wordfence

High 8.8

2024-05-16< 2.7.1

CVE-2024-4352

CVE Patchstack Wordfence

High 8.8

2024-05-16< 2.7.1

CVE-2024-4351

CVE Patchstack Wordfence