CVE Catalog

CVE-2025-64215

MediumCVSS 6.5
Published: Updated: Translated: NVD NIST

Exploitation Probability (EPSS)

Low risk
0.20%

9th percentile — higher than 9% of all known CVEs

Summary

Missing Authorization in StylemixThemes MasterStudy LMS Pro allows accessing functionality not properly constrained by ACLs. This issue affects MasterStudy LMS Pro versions before 4.7.16.

Risk Assessment

The organization may be exposed to unauthorized access to sensitive functionalities, potentially leading to data leaks or unauthorized actions.

Recommendation

It is recommended to update to version 4.7.16 or later to secure the system against this vulnerability.

Original NVD description (English source)

Missing Authorization vulnerability in StylemixThemes MasterStudy LMS Pro allows Accessing Functionality Not Properly Constrained by ACLs. This issue affects MasterStudy LMS Pro: from n/a before 4.7.16.

Vulnerability data from NVD (NIST) · CISA KEV · EPSS