CVE-2024-43282

Name of the Vulnerable Software and Affected Versions Tutor LMS versions through 2.7.2

Description The issue is related to an SQL Injection vulnerability due to improper neutralization of special elements used in an SQL command. This allows for potential exploitation. To stay secure, it is recommended to update to a newer version.

Recommendations Update to version 2.7.3 to resolve the issue. As a temporary workaround, consider restricting access to sensitive database queries until the update is applied.