CVSS: 6.5EPSS: 0%CPEs: 1EXPL: 0CVE-2023-47834 – WordPress Quiz And Survey Master Plugin <= 8.1.13 is vulnerable to Cross Site Scripting (XSS)
https://notcve.org/view.php?id=CVE-2023-47834
16 Nov 2023 — Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') vulnerability in ExpressTech Quiz And Survey Master plugin <= 8.1.13 versions. Vulnerabilidad de neutralización inadecuada de la entrada durante la generación de páginas web ('cross-site Scripting') en el complemento ExpressTech Quiz And Survey Master en versiones <= 8.1.13. The Quiz And Survey Master – Best Quiz, Exam and Survey Plugin for WordPress plugin for WordPress is vulnerable to Stored Cross-Site Scripting via t... • https://patchstack.com/database/vulnerability/quiz-master-next/wordpress-quiz-and-survey-master-plugin-8-1-13-cross-site-scripting-xss-vulnerability?_s_id=cve • CWE-79: Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') •
CVSS: 5.4EPSS: 0%CPEs: 1EXPL: 0CVE-2021-36865 – WordPress Quiz And Survey Master plugin <= 7.3.4 - Insecure direct object references (IDOR) vulnerability
https://notcve.org/view.php?id=CVE-2021-36865
29 Sep 2022 — Insecure direct object references (IDOR) vulnerability in ExpressTech Quiz And Survey Master plugin <= 7.3.4 at WordPress allows attackers to change the content of the quiz. Una vulnerabilidad de referencias directas a objetos inseguros (IDOR) en el plugin ExpressTech Quiz And Survey Master versiones anteriores a 7.3.4 incluyéndola en WordPress, permite a atacantes cambiar el contenido del cuestionario The Quiz And Survey Master plugin for WordPress is vulnerable to insecure direct object reference in versi... • https://patchstack.com/database/vulnerability/quiz-master-next/wordpress-quiz-and-survey-master-plugin-7-3-4-insecure-direct-object-references-idor-vulnerability?_s_id=cve • CWE-639: Authorization Bypass Through User-Controlled Key •
CVSS: 6.1EPSS: 0%CPEs: 1EXPL: 2CVE-2019-9575 – Quiz And Survey Master <= 6.2.1 - Cross-Site Scripting
https://notcve.org/view.php?id=CVE-2019-9575
05 Feb 2019 — The Quiz And Survey Master plugin 6.0.4 for WordPress allows wp-admin/admin.php?page=mlw_quiz_results quiz_id XSS. El plugin Quiz And Survey Master, en versiones 6.0.4 para Wordpress, permite Cross-Site Scripting (XSS) en wp-admin/admin.php?page=mlw_quiz_results quiz_id. The Quiz And Survey Master plugin 6.2.1 for WordPress allows wp-admin/admin.php? • https://github.com/QuizandSurveyMaster/quiz_master_next/blob/master/CHANGELOG.md • CWE-79: Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') •