Themeum Tutor Lms Elementor Addons
Don't miss out!
Thousands of developers use stack.watch to stay informed.Get an email whenever new security vulnerabilities are reported in Themeum Tutor Lms Elementor Addons.
By the Year
In 2026 there have been 0 vulnerabilities in Themeum Tutor Lms Elementor Addons. Last year, in 2025 Tutor Lms Elementor Addons had 1 security vulnerability published. Right now, Tutor Lms Elementor Addons is on track to have less security vulnerabilities in 2026 than it did last year.
| Year | Vulnerabilities | Average Score |
|---|---|---|
| 2026 | 0 | 0.00 |
| 2025 | 1 | 6.50 |
| 2024 | 4 | 5.37 |
It may take a day or so for new Tutor Lms Elementor Addons vulnerabilities to show up in the stats or in the list of recent security vulnerabilities. Additionally vulnerabilities may be tagged under a different product or component name.
Recent Themeum Tutor Lms Elementor Addons Security Vulnerabilities
Stored XSS in Themeum Tutor LMS Elementor Addon 3.0.1
CVE-2025-63042
6.5 - Medium
- December 09, 2025
Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') vulnerability in Themeum Tutor LMS Elementor Addons tutor-lms-elementor-addons allows Stored XSS.This issue affects Tutor LMS Elementor Addons: from n/a through <= 3.0.1.
XSS
Tutor LMS Elementor Addons <=2.1.5 Missing Auth Vulnerability
CVE-2024-53816
- December 09, 2024
Missing Authorization vulnerability in Themeum Tutor LMS Elementor Addons tutor-lms-elementor-addons.This issue affects Tutor LMS Elementor Addons: from n/a through <= 2.1.5.
AuthZ
Tutor LMS Elementor Addons Plugin: Unauthorized Plugin Installation Vulnerability
CVE-2024-10897
4.3 - Medium
- November 15, 2024
The Tutor LMS Elementor Addons plugin for WordPress is vulnerable to unauthorized plugin installation due to a missing capability check on the install_etlms_dependency_plugin() function in all versions up to, and including, 2.1.5. This makes it possible for authenticated attackers, with Subscriber-level access and above, to install Elementor or Tutor LMS. Please note the impact of this issue is incredibly limited due to the fact that these two plugins will likely already be installed as a dependency of the plugin.
AuthZ
Stored XSS in Tutor LMS Elementor Addons (<=2.1.4) via course_carousel_skin
CVE-2024-5576
6.4 - Medium
- August 20, 2024
The Tutor LMS Elementor Addons plugin for WordPress is vulnerable to Stored Cross-Site Scripting via the 'course_carousel_skin' attribute within the plugin's Course Carousel widget in all versions up to, and including, 2.1.4 due to insufficient input sanitization and output escaping on user supplied attributes. This makes it possible for authenticated attackers, with contributor-level access and above, to inject arbitrary web scripts in pages that will execute whenever a user accesses an injected page.
XSS
Cross-site Scripting (XSS) in Themeum Tutor LMS Elementor Addons <= 2.1.3
CVE-2024-29913
5.4 - Medium
- March 27, 2024
Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') vulnerability in Themeum Tutor LMS Elementor Addons allows Stored XSS.This issue affects Tutor LMS Elementor Addons: from n/a through 2.1.3.
XSS
Stay on top of Security Vulnerabilities
Want an email whenever new vulnerabilities are published for Themeum Tutor Lms Elementor Addons or by Themeum? Click the Watch button to subscribe.
