Browse all 11 CVE security advisories affecting masteriyo. AI-powered Chinese analysis, POCs, and references for each vulnerability.
Masteriyo is a WordPress LMS plugin enabling online course creation and management. Historically, it has been vulnerable to multiple security issues including cross-site scripting (XSS), remote code execution (RCE), and privilege escalation vulnerabilities. These flaws often stem from insufficient input validation and improper access controls. The plugin has accumulated 11 CVEs to date, with several critical vulnerabilities allowing unauthenticated attackers to execute arbitrary code or compromise user accounts. Security researchers have identified consistent patterns in its vulnerability profile, particularly in areas handling user-generated content and authentication mechanisms. No major public security incidents have been widely reported, though the high number of CVEs indicates a history of security challenges requiring ongoing vigilance.
This page lists every published CVE security advisory associated with masteriyo. Each entry links to a detailed page with CVSS scoring, CWE classification, affected products and references. AI-generated Chinese analysis is provided for fast triage.