CVE-2023-4278

HIGH

MasterStudy LMS <3.0.18 - Info Disclosure

Title source: llm

Exploitation Summary

EIP tracks 2 public exploits for CVE-2023-4278. PoCs published by Revan Arifio, revan-ar.

AI-analyzed exploit summary This exploit leverages an unauthenticated instructor account creation vulnerability in Masterstudy LMS WordPress plugin versions <= 3.0.17. It automates the process of extracting a nonce and submitting a crafted registration request to escalate privileges to an instructor role.

Description

The MasterStudy LMS WordPress Plugin WordPress plugin before 3.0.18 does not have proper checks in place during registration allowing anyone to register on the site as an instructor. They can then add courses and/or posts.

Exploits (2)

exploitdb WORKING POC

by Revan Arifio · pythonwebappsphp

https://www.exploit-db.com/exploits/51735

View Code ZIP pw:eip

This exploit leverages an unauthenticated instructor account creation vulnerability in Masterstudy LMS WordPress plugin versions <= 3.0.17. It automates the process of extracting a nonce and submitting a crafted registration request to escalate privileges to an instructor role.

Classification

Working Poc 95%

Attack Type

Auth Bypass

Complexity

Trivial

Reliability

Reliable

Target: Masterstudy LMS WordPress Plugin <= 3.0.17

No auth needed

Prerequisites: Target URL with vulnerable plugin installed · Network access to the target

MITRE ATT&CK

T1133 - External Remote Services T1068 - Exploitation for Privilege Escalation

devstral-2 · analyzed Feb 16, 2026 Full analysis →

nomisec WORKING POC

by revan-ar · poc

https://github.com/revan-ar/CVE-2023-4278

View Code ZIP pw:eip

This repository contains a functional exploit for CVE-2023-4278, which allows unauthenticated users to create an instructor account in WordPress Plugin Masterstudy LMS versions <= 3.0.17. The exploit automates the process of retrieving a nonce and sending a crafted request to escalate privileges.

Classification

Working Poc 95%

Attack Type

Auth Bypass

Complexity

Trivial

Reliability

Reliable

Target: Masterstudy LMS WordPress Plugin <= 3.0.17

No auth needed

Prerequisites: Target must have the vulnerable plugin installed and accessible · Network access to the target WordPress site

MITRE ATT&CK

T1133 - External Remote Services T1068 - Exploitation for Privilege Escalation

devstral-2 · analyzed Feb 18, 2026 Full analysis →

References (2)

Core 2

Core References

Exploit, Third Party Advisory

http://packetstormsecurity.com/files/175007/WordPress-Masterstudy-LMS-3.0.17-Account-Creation.html

Exploit, Third Party Advisory exploit vdb-entry technical-description

https://wpscan.com/vulnerability/cb3173ec-9891-4bd8-9d05-24fe805b5235

Scores

CVSS v3 7.5

EPSS 0.0350

EPSS Percentile 87.6%

Attack Vector NETWORK

CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:H/A:N

CISA SSVC

Vulnrichment

Exploitation poc

Automatable yes

Technical Impact partial

Details

Status published

Products (1)

stylemixthemes/masterstudy_lms < 3.0.18

Published Sep 11, 2023

Tracked Since Feb 18, 2026