MasterStudy LMS Pro Plugin Vulnerability - CVE-2025-4800

Hey hey!

This is to quickly warn you of a recently discovered vulnerability in the MasterStudy LMS Pro plugin.

The severity score is 8.8, which translates to high, and there's a good reason for that.

All MasterStudy LMS Pro plugin versions below 4.7.1 contain a heavy risk where anyone with a subscriber-level access can upload files on the server as they please, thus allowing hacking and spamming techniques to be executed on such websites.

The vulnerability was first discovered and disclosed by a contributor at WordFence, and has since been added to the Common Vulnerabilities and Exposures database(commonly referred to as CVE).

What to do about it?

If you have the MasterStudy LMS Pro plugin installed on your WordPress website, please update it immediately.

Until you update this plugin on your website, you risk your website being hacked, and either destroyed or used for malicious activity.

Don't feel comfortable performing updates and maintaining your WordPress website?

Get in touch today or check out my monthly maintenance services.