CVE Vulnerabilities

CVE-2025-0466

Published: Feb 04, 2025 | Modified: May 13, 2025
CVSS 3.x
N/A
Source:
NVD
CVSS 2.x
RedHat/V2
RedHat/V3
Ubuntu

The Sensei LMS WordPress plugin before 4.24.4 does not properly protect some its REST API routes, allowing unauthenticated attackers to leak sensei_email and sensei_message Information.

Affected Software

Name Vendor Start Version End Version
Sensei_lms Automattic * 4.24.4 (excluding)

References