CVE-2026-0953— WordPress plugin Tutor LMS Pro 授权问题漏洞

Tutor LMS Pro <= 3.9.5 - Authentication Bypass via Social Login

The Tutor LMS Pro plugin for WordPress is vulnerable to authentication bypass in all versions up to, and including, 3.9.5 via the Social Login addon. This is due to the plugin failing to verify that the email provided in the authentication request matches the email from the validated OAuth token. This makes it possible for unauthenticated attackers to log in as any existing user, including administrators, by supplying a valid OAuth token from their own account along with the victim's email address.

CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H

认证机制不恰当

WordPress plugin Tutor LMS Pro 授权问题漏洞

WordPress和WordPress plugin都是WordPress基金会的产品。WordPress是一套使用PHP语言开发的博客平台。该平台具有在基于PHP和MySQL的服务器上架设个人博客网站的功能。WordPress plugin是一个应用插件。 WordPress plugin Tutor LMS Pro 3.9.5及之前版本存在授权问题漏洞，该漏洞源于插件未验证身份验证请求中的电子邮件与已验证OAuth令牌中的电子邮件是否匹配，可能导致未经验证的攻击者以任何现有用户身份登录。

N/A

N/A