Vulmon
Recent Vulnerabilities
Research Posts
Trends
Blog
About
Contact
Vulmon Alerts
By Relevance
By Risk Score
By Publish Date
expresstech quiz and survey master vulnerabilities and exploits
(subscribe to this query)
7.5
CVSSv3
CVE-2022-42883
Sensitive Information Disclosure vulnerability discovered by Quiz And Survey Master plugin <= 7.3.10 on WordPress.
Expresstech Quiz And Survey Master
7.2
CVSSv3
CVE-2021-36898
Auth. SQL Injection (SQLi) vulnerability in Quiz And Survey Master plugin <= 7.3.4 on WordPress.
Expresstech Quiz And Survey Master
6.5
CVSSv3
CVE-2016-11085
php/qmn_options_questions_tab.php in the quiz-master-next plugin prior to 4.7.9 for WordPress allows CSRF, with resultant stored XSS, via the question_name parameter because js/admin_question.js mishandles parsing inside of a SCRIPT element.
Expresstech Quiz And Survey Master
6.1
CVSSv3
CVE-2022-4032
The Quiz and Survey Master plugin for WordPress is vulnerable to iFrame Injection via the 'question[id]' parameter in versions up to, and including, 8.0.4 due to insufficient input sanitization and output escaping that allowed iframe tags to be injected. This makes it p...
Expresstech Quiz And Survey Master
6.1
CVSSv3
CVE-2022-40698
Auth. (subscriber+) Cross-Site Scripting (XSS) vulnerability in Quiz And Survey Master plugin <= 7.3.10 on WordPress.
Expresstech Quiz And Survey Master
6.1
CVSSv3
CVE-2022-0181
Reflected cross-site scripting vulnerability in Quiz And Survey Master versions before 7.3.7 allows a remote malicious user to inject an arbitrary script via unspecified vectors.
Expresstech Quiz And Survey Master
6.1
CVSSv3
CVE-2021-20792
Cross-site scripting vulnerability in Quiz And Survey Master versions before 7.1.14 allows a remote malicious user to inject arbitrary script via unspecified vectors.
Expresstech Quiz And Survey Master
6.1
CVSSv3
CVE-2021-24368
The Quiz And Survey Master – Best Quiz, Exam and Survey Plugin WordPress plugin prior to 7.1.18 did not sanitise or escape its result_id parameter when displaying an existing quiz result page, leading to a reflected Cross-Site Scripting issue. This could allow for privilege...
Expresstech Quiz And Survey Master
6.1
CVSSv3
CVE-2019-17599
The quiz-master-next (aka Quiz And Survey Master) plugin prior to 6.3.5 for WordPress is affected by: Cross Site Scripting (XSS). The impact is: Allows an malicious user to execute arbitrary HTML and JavaScript code via the from or till parameter (and/or the quiz_id parameter). T...
Expresstech Quiz And Survey Master
5.4
CVSSv3
CVE-2023-47834
Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') vulnerability in ExpressTech Quiz And Survey Master plugin <= 8.1.13 versions.
Quizandsurveymaster Quiz And Survey Master
CVSSv3
CVSSv2
CVSSv3
VMScore
Recommendations:
validation
CVE-2012-1823
malicious code
CVE-2024-5770
CVE-2023-45866
CVE-2024-35687
local users
CVE-2024-31246
CVE-2024-35730
Vulnerability Notification Service
You don’t have to wait for vulnerability scanning results
Get Started
« PREV
1
2
3
NEXT »