Vulnerability Details : CVE-2022-2080
The Sensei LMS WordPress plugin before 4.5.2 does not ensure that the sender of a private message is either the teacher or the original sender, allowing any authenticated user to send messages to arbitrary private conversation via a IDOR attack. Note: Attackers are not able to see responses/messages between the teacher and student
Products affected by CVE-2022-2080
- cpe:2.3:a:automattic:sensei_lms:*:*:*:*:*:wordpress:*:*
Exploit prediction scoring system (EPSS) score for CVE-2022-2080
0.05%
Probability of exploitation activity in the next 30 days
EPSS Score History
~ 19 %
Percentile, the proportion of vulnerabilities that are scored at or less
CVSS scores for CVE-2022-2080
Base Score | Base Severity | CVSS Vector | Exploitability Score | Impact Score | Score Source | First Seen |
---|---|---|---|---|---|---|
4.3
|
MEDIUM | CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:N/I:L/A:N |
2.8
|
1.4
|
NIST |
CWE ids for CVE-2022-2080
-
The system's authorization functionality does not prevent one user from gaining access to another user's data or record by modifying the key value identifying the data.Assigned by: contact@wpscan.com (Primary)
References for CVE-2022-2080
-
https://wpscan.com/vulnerability/5395d196-a39a-4a58-913e-5b5b9d6123a5
Just a moment...Third Party Advisory
-
https://hackerone.com/reports/1592596
HackerOneExploit;Third Party Advisory
Jump to