Description

Creativeitem Academy LMS up to and including 5.13 contains a privilege escalation vulnerability in the Api_instructor controller where regular authenticated users can access instructor-only functions without proper role validation, allowing unauthorized course creation and management.

INFO

Published Date :

2025-10-14T00:00:00.000Z

Last Modified :

2025-10-14T15:57:08.378Z

Source :

mitre
AFFECTED PRODUCTS

The following products are affected by CVE-2025-56747 vulnerability.

No data.

REFERENCES

Here, you will find a curated list of external links that provide in-depth information to CVE-2025-56747.

URL Resource
https://suryadina.com/academy-lms-instructor-escalation-3n7b9f2w5k cve-icon cve-icon
Login to claim this CVE

CVSS Vulnerability Scoring System