A SQL injection vulnerability was reported in Tutor LMS requiring a user with student level access to execute. What is newsworthy is that the issue was reported 3 months ago and still not patched.
Tutor LMS SQL Injection Vulnerability
Patchstack Security • 2 years ago