CVE-2026-25406

CVSS v3.1

8.1

High

Vector

AV:N/AC:H/PR:N/UI:N/S:U/C:H/I:H/A:H

Name of the Vulnerable Software and Affected Versions Themeum Tutor LMS Pro versions prior to 3.9.4

Description An authentication bypass issue exists in Themeum Tutor LMS Pro, allowing authentication abuse. The issue involves using an alternate path or channel to circumvent normal authentication procedures.

Recommendations Update Themeum Tutor LMS Pro to a version later than 3.9.4.

Fix

Authentication Bypass Using an Alternate Path or Channel

Found an issue in the description? Have something to add? Feel free to write us 👾

dbugs@ptsecurity.com

Weakness Enumeration

CWE-288

Related Identifiers

CVE-2026-25406

Affected Products

Tutor Lms Pro

CVE-2026-25406

Weakness Enumeration

Related Identifiers

Affected Products

References · 4