CVSS 3.1 Score 5.3 of 10 (medium)


Published Mar 13, 2024


CVE-2024-2106 is a vulnerability found in the MasterStudy LMS WordPress Plugin – for Online Courses and Education plugin for WordPress, affecting versions up to and including 3.2.10. This vulnerability allows unauthenticated attackers to extract sensitive information, such as registered user's usernames and email addresses. The exposed data can be exploited to carry out future attacks. The risk score for this vulnerability is 25, with a base severity of MEDIUM and a base score of 5.3 according to The confidentiality impact is rated as LOW, and the exploitability score is 3.9 with no privileges required and no user interaction needed. The attack vector is through the network, with low attack complexity and no impact on integrity or availability of the system.

Explore Beyond the CVE Basics with Recorded Future's Vulnerability Intelligence

Note: This is just a basic overview providing quick insights into CVE-2024-2106 information. Gain full access to comprehensive CVE data, risk scores, prioritization, and mitigation data through Recorded Future's Vulnerability Intelligence:
  • Prioritize with Risk-Based Scoring
  • Explore the Extensive Vulnerability Database
  • Receive Early Alerts on Emerging CVEs
  • Focus on Critical Exploitable Vulnerabilities
  • Streamline Remediation with Integration Options