CVE-2026-6080 | themeum Tutor LMS Plugin up to 3.9.8 on WordPress prepare Date sql injection

April 17, 2026 Yanac

A vulnerability was found in themeum Tutor LMS Plugin up to 3.9.8 on WordPress. It has been rated as critical. The affected element is the function prepare. The manipulation of the argument Date leads to sql injection.

This vulnerability is documented as CVE-2026-6080. The attack can be initiated remotely. There is not any exploit available.VulDB Recent EntriesRead More

CVE-2026-5807 | HashiCorp Vault/Vault Enterprise up to 1.x Token Generation allocation of resources
CVE-2026-4853 | backupguard JetBackup Plugin up to 3.1.19.8 on WordPress Invalid File sanitize_text_field fileName path traversal