CVE-2025-13934

Name of the Vulnerable Software and Affected Versions Tutor LMS versions prior to 3.9.4

Description The Tutor LMS plugin for WordPress is susceptible to unauthorized course enrollment. This occurs because of a missing capability check and purchasability validation within the course enrollment() AJAX handler. Authenticated attackers with subscriber-level access or higher can enroll in any course without completing the standard purchase process.

Recommendations Update Tutor LMS to version 3.9.4 or later.