Vulnerabilities

CVE-2025-56747

by Fred · 14/10/2025

Creativeitem Academy LMS up to and including 5.13 contains a privilege escalation vulnerability in the Api_instructor controller where regular authenticated users can access instructor-only functions without proper role validation, allowing unauthorized course creation and management.

More information : https://suryadina.com/academy-lms-instructor-escalation-3n7b9f2w5k

Similar

Tags: Cybersecurity Alert