CVE-2026-25406 in Tutor LMS Pro Plugininfo

Summary

Authentication Bypass Using an Alternate Path or Channel vulnerability in Themeum Tutor LMS Pro tutor-pro allows Authentication Abuse.This issue affects Tutor LMS Pro: from n/a through <= 3.9.4.

If you want to get best quality of vulnerability data, you may have to visit VulDB.

Responsible

Patchstack

Reservation

02/02/2026

Disclosure

03/25/2026

Status

Confirmed

Entries

VulDB provides additional information and datapoints for this CVE:

IDVulnerabilityCWEExpCouCVE
353327Themeum Tutor LMS Pro Plugin authentication bypass288Not definedNot definedCVE-2026-25406

Description

CPE

CWE

CVSS

Exploits

History

Diff

Relate

Threat Intelligence

API JSON

API XML

API CSV

Sources

PreviousOverviewNext

Do you know our Splunk app?

Download it now for free!