CVE-2025-32230Improper Neutralization of Script-Related HTML Tags in a Web Page (Basic XSS) in Tutor LMS

CWE-80Improper Neutralization of Script-Related HTML Tags in a Web Page (Basic XSS)3 documents3 sources
Severity
N/A
No vector
EPSS
0.1%
top 66.20%
CISA KEV
Not in KEV
Exploit
No known exploits
Affected products
1
Themeum Tutor LMS
Timeline
PublishedApr 10

Description

Improper Neutralization of Script-Related HTML Tags in a Web Page (Basic XSS) vulnerability in Themeum Tutor LMS tutor.This issue affects Tutor LMS: from n/a through <= 3.4.0.

Affected Packages1 packages

CVEListV5themeum/tutor_lms3.4.0

🔴Vulnerability Details

2
GHSA
GHSA-28wv-vf39-3r2q: Improper Neutralization of Script-Related HTML Tags in a Web Page (Basic XSS) vulnerability in Themeum Tutor LMS2025-04-10
CVEList
WordPress Tutor LMS plugin <= 3.4.0 - HTML Injection vulnerability2025-04-10
CVE-2025-32230 — Themeum Tutor LMS vulnerability | cvebase