Lucene search
China National Vulnerability DatabaseCNVD-2022-86360HistoryDec 01, 2022 - 12:00 a.m.
WordPress Quiz and Survey Master plugin iFrame injection vulnerability
2022-12-0100:00:00
China National Vulnerability Database
www.cnvd.org.cn
18
wordpress
survey master
iframe
injection
vulnerability
php
unauthenticated attacker
input cleanup
0.001 Low
EPSS
Percentile
29.0%
WordPress and WordPress plugin are both products of the WordPress Foundation. WordPress is a blogging platform developed using the PHP language. WordPress plugin is an application plugin. iFrame injection vulnerability exists in WordPress plugin Quiz and Survey Master 8.0.4 and prior versions. The vulnerability stems from insufficient input cleanup and output escaping, and can be exploited by an unauthenticated attacker to cause iFrame injection.
| CPE | Name | Operator | Version |
|---|---|---|---|
| wordpress quiz and survey master plugin | le | 8.0.4 |
Related
wpvulndb
wpvulndb
Quiz and Survey Master < 8.0.5 - Unauthenticated iFrame Injection
2022-11-29 00:00:00
nvd
nvd
CVE-2022-4032
2022-11-29 21:15:12
cvelist
cvelist
CVE-2022-4032
2022-11-29 20:23:15
cve
cve
CVE-2022-4032
2022-11-29 21:15:12
osv
osv
CVE-2022-4032
2022-11-29 21:15:12
prion
prion
Input validation
2022-11-29 21:15:00