controllers/quizzes.php in the Kiboko Chained Quiz plugin prior to 1.0.9 for WordPress allows remote unauthenticated users to execute arbitrary SQL commands via the 'answer' and 'answers' parameters.
Vulnerable Product | Search on Vulmon | Subscribe to Product |
---|---|---|
kibokolabs chained quiz |