cve,link,title,description,vendor,products,score,severity,epss,cisa,cisa_published,article,ransomware,exploited,poc,trended,trended_no_1,published,trended_score
CVE-2022-2080,https://securityvulnerability.io/vulnerability/CVE-2022-2080,Sensei LMS < 4.5.2 - Arbitrary Private Message Sending via IDOR,"The Sensei LMS WordPress plugin before 4.5.2 does not ensure that the sender of a private message is either the teacher or the original sender, allowing any authenticated user to send messages to arbitrary private conversation via a IDOR attack. Note: Attackers are not able to see responses/messages between the teacher and student",Wordpress,"Sensei Lms – Online Courses, Quizzes, & Learning",4.3,MEDIUM,0.000539999979082495,false,,false,false,false,,false,false,2022-08-29T14:40:27.000Z,0