Vulmon
Recent Vulnerabilities
Research Posts
Trends
Blog
About
Contact
Vulmon Alerts
By Relevance
By Risk Score
By Publish Date
expresstech quiz and survey master vulnerabilities and exploits
(subscribe to this query)
6.1
CVSSv3
CVE-2021-24368
The Quiz And Survey Master – Best Quiz, Exam and Survey Plugin WordPress plugin prior to 7.1.18 did not sanitise or escape its result_id parameter when displaying an existing quiz result page, leading to a reflected Cross-Site Scripting issue. This could allow for privilege...
Expresstech Quiz And Survey Master
8.8
CVSSv3
CVE-2022-0180
Cross-site request forgery (CSRF) vulnerability in Quiz And Survey Master versions before 7.3.7 allows a remote malicious user to hijack the authentication of administrators and conduct arbitrary operations via a specially crafted web page.
Expresstech Quiz And Survey Master
6.1
CVSSv3
CVE-2022-0181
Reflected cross-site scripting vulnerability in Quiz And Survey Master versions before 7.3.7 allows a remote malicious user to inject an arbitrary script via unspecified vectors.
Expresstech Quiz And Survey Master
5.4
CVSSv3
CVE-2022-0182
Stored cross-site scripting vulnerability in Quiz And Survey Master versions before 7.3.7 allows a remote authenticated malicious user to inject an arbitrary script via an website that uses Quiz And Survey Master.
Expresstech Quiz And Survey Master
8.8
CVSSv3
CVE-2021-24221
The Quiz And Survey Master – Best Quiz, Exam and Survey Plugin for WordPress plugin prior to 7.1.12 did not sanitise the result_id GET parameter on pages with the [qsm_result] shortcode without id attribute, concatenating it in a SQL statement and leading to an SQL injectio...
Expresstech Quiz And Survey Master
6.1
CVSSv3
CVE-2021-20792
Cross-site scripting vulnerability in Quiz And Survey Master versions before 7.1.14 allows a remote malicious user to inject arbitrary script via unspecified vectors.
Expresstech Quiz And Survey Master
5.4
CVSSv3
CVE-2023-47834
Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') vulnerability in ExpressTech Quiz And Survey Master plugin <= 8.1.13 versions.
Quizandsurveymaster Quiz And Survey Master
4.3
CVSSv3
CVE-2021-36865
Insecure direct object references (IDOR) vulnerability in ExpressTech Quiz And Survey Master plugin <= 7.3.4 at WordPress allows malicious users to change the content of the quiz.
Quizandsurveymaster Quiz And Survey Master
NA
CVE-2024-27966
Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') vulnerability in ExpressTech Quiz And Survey Master allows Stored XSS.This issue affects Quiz And Survey Master: from n/a up to and including 8.2.2.
CVSSv3
CVSSv2
CVSSv3
VMScore
Recommendations:
inject
CVE-2024-34001
CVE-2024-37018
LFI
CVE-2024-1275
CVE-2024-1086
CSRF
CVE-2024-31030
CVE-2024-24919
Vulnerability Notification Service
You don’t have to wait for vulnerability scanning results
Get Started
« PREV
1
2
3