CVE-2026-4484 | Masteriyo LMS Plugin up to 2.1.6 on WordPress prepare_object_for_database authorization

A vulnerability classified as critical was found in Masteriyo LMS Plugin up to 2.1.6 on WordPress. Affected is the function InstructorsController::prepare_object_for_database. Such manipulation leads to missing authorization.

This vulnerability is listed as CVE-2026-4484. The attack may be performed from remote. There is no available exploit.

Upgrading the affected component is advised.VulDB Recent EntriesRead More