Gbuckingham89

Name of the Vulnerable Software and Affected Versions: ATutor versions 2.2 and earlier Description: The issue allows remote attackers to bypass authentication and gain access as an existing user. This is achieved via the `auto login` parameter in the "confirm.php" file. Recommendations: For ATutor versions 2.2 and earlier, consider disabling the `auto login` parameter in the "confirm.php" file as a temporary workaround until a patch is available. Restrict access to the "confirm.php" file to minimize the risk of exploitation.