CVE-2025-7438 | MasterStudy LMS Pro Plugin up to 4.7.9 on WordPress install_and_activate_plugin unrestricted upload

A vulnerability, which was classified as critical, was found in MasterStudy LMS Pro Plugin up to 4.7.9 on WordPress. Affected is the function install_and_activate_plugin. The manipulation leads to unrestricted upload.

This vulnerability is traded as CVE-2025-7438. It is possible to launch the attack remotely. There is no exploit available.VulDB Recent EntriesRead More