Missing Authorization Vulnerability in StylemixThemes MasterStudy LMS Pro
CVE-2025-64215

6.5MEDIUM

Key Information:

Vendor: WordPress
Status: Masterstudy Lms Pro
Vendor: CVE Published:; 15 June 2026

What is CVE-2025-64215?

A missing authorization vulnerability exists in the MasterStudy LMS Pro plugin by StylemixThemes, which could potentially allow unauthorized users to gain access to functionalities that should be restricted. This issue affects versions preceding 4.7.16, highlighting the importance of maintaining updated software to ensure robust access controls and safeguard sensitive information. For further details, refer to the related security advisories.

Affected Version(s)

MasterStudy LMS Pro < 4.7.16

References

https://patchstack.com/database/wordpress/plugin/masterst...

vdb-entry

CVSS V3.1

Score:

6.5

Severity:

MEDIUM

Confidentiality:

None

Integrity:

Low

Availability:

None

Attack Vector:

Network

Attack Complexity:

Low

Privileges Required:

None

User Interaction:

None

Scope:

Unchanged

Download the Critical Vulnerability Management Cheat Sheet

Timeline

Vulnerability published
Jun 15, 2026
Vulnerability Reserved
Oct 29, 2025

Credit

Rafie Muhammad | Patchstack

CVE-2025-64215 Data

JSON

WordPress

What is CVE-2025-64215?

Affected Version(s)

References

CVSS V3.1

Timeline

Credit