CVE-2025-32230

Name of the Vulnerable Software and Affected Versions: Tutor LMS versions n/d through 3.4.0

Description: The issue is related to an improper neutralization of script-related HTML tags in a web page, which can lead to a basic Cross-Site Scripting (XSS) attack. This allows an attacker to inject malicious scripts into a webpage, potentially affecting users who visit the page.

Recommendations: For versions prior to 3.4.0, update to a version that includes the fix for this issue. At the moment, there is no information about a newer version that contains a fix for this vulnerability.