6.5 Medium
CVSS3
Attack Vector
NETWORK
Attack Complexity
LOW
Privileges Required
LOW
User Interaction
NONE
Scope
UNCHANGED
Confidentiality Impact
NONE
Integrity Impact
NONE
Availability Impact
HIGH
CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H
6.8 Medium
AI Score
Confidence
High
0.001 Low
EPSS
Percentile
31.1%
WordPress Plugin “WordPress Quiz Maker Plugin” provided by AYS Pro Plugins contains an improper input validation vulnerability (CWE-20).
A user of the product may use the product to perform a Denial of Service (DoS) attack against external services.
Update the plugin
Update the plugin according to the information provided by the developer.
6.5 Medium
CVSS3
Attack Vector
NETWORK
Attack Complexity
LOW
Privileges Required
LOW
User Interaction
NONE
Scope
UNCHANGED
Confidentiality Impact
NONE
Integrity Impact
NONE
Availability Impact
HIGH
CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H
6.8 Medium
AI Score
Confidence
High
0.001 Low
EPSS
Percentile
31.1%