Skip to main content

MasterStudy LMS EUVDEUVD-2026-40101

| CVE-2026-57330 MEDIUM
Cross-site Scripting (XSS) (CWE-79)
2026-06-29 Patchstack GHSA-j7cj-983v-9p46
6.5
CVSS 3.1 · Vendor: Patchstack
Share

Severity by source

Vendor (Patchstack) PRIMARY
6.5 MEDIUM
AV:N/AC:L/PR:L/UI:R/S:C/C:L/I:L/A:L
vuln.today AI
5.4 MEDIUM

XSS with subscriber auth (PR:L), admin interaction required (UI:R), scope change to admin browser (S:C); availability impact not substantiated for typical XSS.

3.1 AV:N/AC:L/PR:L/UI:R/S:C/C:L/I:L/A:N
4.0 AV:N/AC:L/AT:N/PR:L/UI:P/VC:N/VI:N/VA:N/SC:L/SI:L/SA:N

Primary rating from Vendor (Patchstack).

CVSS VectorVendor: Patchstack

CVSS:3.1/AV:N/AC:L/PR:L/UI:R/S:C/C:L/I:L/A:L
Attack Vector
Network
Attack Complexity
Low
Privileges Required
Low
User Interaction
Required
Scope
Changed
Confidentiality
Low
Integrity
Low
Availability
Low

Lifecycle Timeline

1
Analysis Generated
Jun 29, 2026 - 15:22 vuln.today

DescriptionCVE.org

Subscriber Cross Site Scripting (XSS) in MasterStudy LMS <= 3.7.27 versions.

AnalysisAI

Stored Cross-Site Scripting in the MasterStudy LMS WordPress plugin (versions <= 3.7.27) allows authenticated subscriber-level users to inject malicious scripts that execute in the browsers of higher-privileged users such as administrators. The vulnerability carries a Scope:Changed CVSS vector, meaning successful exploitation breaks the browser security boundary and can impact resources beyond the plugin itself - enabling session hijacking, credential theft, or privilege escalation within the WordPress admin context. …

Unlock full vulnerability intelligence

  • Risk assessment & exploitation conditions
  • Attack chain visualization
  • Remediation with exact patch versions
  • Threat intelligence from 22 sources
  • Personal watchlist & email alerts

Free forever · No credit card required

Attack ChainAIDerived

Hypothetical attack flow derived from CVE metadata

Access
Register subscriber account on target LMS site
Delivery
Submit crafted XSS payload via vulnerable plugin input field
Exploit
Payload stored in WordPress database
Execution
Admin user navigates to affected page
Persist
Malicious script executes in admin browser
Impact
Steal session token or create rogue admin account

Vulnerability AssessmentAI

Exploitation Exploitation requires the attacker to hold a valid subscriber-level (or equivalent low-privilege) authenticated account on the target WordPress site - unauthenticated exploitation is not supported by the PR:L CVSS metric. … Additional conditions and limiting factors are described in the full assessment.
Risk Assessment The CVSS base score of 6.5 (Medium) is broadly appropriate, but several signals refine real-world priority. … Full risk analysis with EPSS, KEV, and SSVC signal comparison available after sign-in.
Exploit Scenario An attacker registers a free subscriber account on a WordPress-based e-learning platform running MasterStudy LMS <= 3.7.27, then submits a crafted payload - such as a script tag - into a plugin input field (e.g., a course review, profile field, or quiz submission) that is later rendered in the WordPress admin panel. When a site administrator visits the affected page, the injected script executes in their browser, exfiltrating the admin's session cookie or silently creating a new administrator account for persistent access. …
Remediation The primary fix is to update MasterStudy LMS to a version above 3.7.27. … Detailed patch versions, workarounds, and compensating controls in full report.

Threat intelligence, references, and detailed analysis are available after sign-in.

CVE-2024-1512 CRITICAL POC
9.8 Feb 17

The MasterStudy LMS WordPress Plugin - for Online Courses and Education plugin for WordPress is vulnerable to union base

CVE-2024-3136 CRITICAL POC
9.8 Apr 09

The MasterStudy LMS plugin for WordPress is vulnerable to Local File Inclusion in all versions up to, and including, 3.3

CVE-2022-0441 CRITICAL POC
9.8 Mar 07

The MasterStudy LMS WordPress plugin before 2.7.6 does to validate some parameters given when registering a new account,

CVE-2024-5973 HIGH POC
8.8 Jul 22

The MasterStudy LMS WordPress Plugin WordPress plugin before 3.3.24 does not prevent students from creating instructor a

CVE-2023-4278 HIGH POC
7.5 Sep 11

The MasterStudy LMS WordPress Plugin WordPress plugin before 3.0.18 does not have proper checks in place during registra

CVE-2024-2411 CRITICAL
9.8 Mar 29

The MasterStudy LMS plugin for WordPress is vulnerable to Local File Inclusion in all versions up to, and including, 3.3

CVE-2024-2409 CRITICAL
9.8 Mar 29

The MasterStudy LMS plugin for WordPress is vulnerable to Privilege Escalation in all versions up to, and including, 3.3

CVE-2024-37094 CRITICAL
9.8 Nov 01

Missing Authorization vulnerability in StylemixThemes MasterStudy LMS allows Exploiting Incorrectly Configured Access Co

CVE-2026-40766 HIGH
8.5 Jun 15

SQL injection in the MasterStudy LMS WordPress plugin (versions 3.7.25 and earlier) allows authenticated users at the Su

CVE-2023-35093 MEDIUM
6.5 Jun 22

Broken Access Control vulnerability in StylemixThemes MasterStudy LMS WordPress Plugin - for Online Courses and Educatio

CVE-2024-3942 MEDIUM
6.3 May 02

The MasterStudy LMS WordPress Plugin - for Online Courses and Education plugin for WordPress is vulnerable to unauthoriz

CVE-2024-2106 MEDIUM
5.3 Mar 13

The MasterStudy LMS WordPress Plugin - for Online Courses and Education plugin for WordPress is vulnerable to Informatio

Share

EUVD-2026-40101 vulnerability details – vuln.today

This site uses cookies essential for authentication and security. No tracking or analytics cookies are used. Privacy Policy