CVE-2025-10493

🗓️ 18 Sep 2025 06:49:45Reported by WordfenceType

cve🔗 web.nvd.nist.gov👁 43 Views🌐 WEB

CVE-2025-10493: Insecure object reference in Chained Quiz plugin enables hijack of others' quiz attempts.

Reporter	Title	Published	Views	Family All 12
Circl	CVE-2025-10493	18 Sep 202507:27	–	circl
CNNVD	WordPress plugin Chained Quiz 安全漏洞	18 Sep 202500:00	–	cnnvd
Cvelist	CVE-2025-10493 Chained Quiz <= 1.3.5 - Unauthenticated Insecure Direct Object Reference via Cookie	18 Sep 202506:49	–	cvelist
Exploit DB	Chained Quiz 1.3.5 - Unauthenticated Insecure Direct Object Reference via Cookie	25 Dec 202500:00	–	exploitdb
EUVD	EUVD-2025-29846	3 Oct 202520:07	–	euvd
NVD	CVE-2025-10493	18 Sep 202507:15	–	nvd
Packet Storm	📄 WordPress Chained Quiz 1.3.5 Insecure Direct Object Reference	7 Jan 202600:00	–	packetstorm
Patchstack	WordPress Chained Quiz plugin <= 1.3.5 - Unauthenticated Insecure Direct Object Reference via Cookie vulnerability	17 Sep 202521:23	–	patchstack
Positive Technologies	PT-2025-38302	18 Sep 202500:00	–	ptsecurity
RedhatCVE	CVE-2025-10493	20 Sep 202507:31	–	redhatcve

Vulners

Node

prasunsen chained_quizRange≤1.3.5wordpress

[
  {
    "vendor": "prasunsen",
    "product": "Chained Quiz",
    "versions": [
      {
        "version": "0",
        "status": "affected",
        "lessThanOrEqual": "1.3.5",
        "versionType": "semver"
      }
    ],
    "defaultStatus": "unaffected"
  }
]

Source	Link
plugins	www.plugins.trac.wordpress.org/changeset/3362966/
plugins	www.plugins.trac.wordpress.org/changeset/3362561/
wordfence	www.wordfence.com/threat-intel/vulnerabilities/id/1d8f6965-1fe3-4f24-bd6b-9026e91bc5db
plugins	www.plugins.trac.wordpress.org/browser/chained-quiz/tags/1.3.3/models/quiz.php
plugins	www.plugins.trac.wordpress.org/changeset/3362701/
plugins	www.plugins.trac.wordpress.org/browser/chained-quiz/tags/1.3.3/controllers/quizzes.php

Parameter	Position	Path	Description	CWE
chained_completion_id1	header	wp-admin/admin-ajax.php	Insecure Direct Object Reference via cookie used to select quiz attempt without ownership verification.	CWE-639, CWE-285
answer	request body	wp-admin/admin-ajax.php	Exploitable POST parameters used to modify quiz submission; lacks server-side ownership validation for the selected completion_id in the cookie.	CWE-639, CWE-285
question_id	request body	wp-admin/admin-ajax.php	Exploitable POST parameters used to modify quiz submission; lacks server-side ownership validation for the selected completion_id in the cookie.	CWE-639, CWE-285
quiz_id	request body	wp-admin/admin-ajax.php	Exploitable POST parameters used to modify quiz submission; lacks server-side ownership validation for the selected completion_id in the cookie.	CWE-639, CWE-285
post_id	request body	wp-admin/admin-ajax.php	Exploitable POST parameters used to modify quiz submission; lacks server-side ownership validation for the selected completion_id in the cookie.	CWE-639, CWE-285
question_type	request body	wp-admin/admin-ajax.php	Exploitable POST parameters used to modify quiz submission; lacks server-side ownership validation for the selected completion_id in the cookie.	CWE-639, CWE-285
points	request body	wp-admin/admin-ajax.php	Exploitable POST parameters used to modify quiz submission; lacks server-side ownership validation for the selected completion_id in the cookie.	CWE-639, CWE-285
action	request body	wp-admin/admin-ajax.php	Exploitable POST parameters used to modify quiz submission; lacks server-side ownership validation for the selected completion_id in the cookie.	CWE-639, CWE-285
chainedquiz_action	request body	wp-admin/admin-ajax.php	Exploitable POST parameters used to modify quiz submission; lacks server-side ownership validation for the selected completion_id in the cookie.	CWE-639, CWE-285
total_questions	request body	wp-admin/admin-ajax.php	Exploitable POST parameters used to modify quiz submission; lacks server-side ownership validation for the selected completion_id in the cookie.	CWE-639, CWE-285

17 Jun 2026 08:28Current

5.8Medium risk

Vulners AI Score5.8

CVSS 3.15.3

EPSS0.00855

SSVC

CWE-639