Lucene search
PRIOn knowledge basePRION:CVE-2016-11085HistoryAug 16, 2020 - 6:15 p.m.
Cross site request forgery (csrf)
2020-08-1618:15:00
PRIOn knowledge base
www.prio-n.com
5
php/qmn_options_questions_tab.php in the quiz-master-next plugin before 4.7.9 for WordPress allows CSRF, with resultant stored XSS, via the question_name parameter because js/admin_question.js mishandles parsing inside of a SCRIPT element.
| CPE | Name | Operator | Version |
|---|---|---|---|
| quiz_and_survey_master | lt | 4.7.9 |
Related
cve
cve
CVE-2016-11085
2020-08-16 18:15:12
osv
osv
CVE-2016-11085
2020-08-16 18:15:12
cvelist
cvelist
CVE-2016-11085
2020-08-16 17:17:22
nvd
nvd
CVE-2016-11085
2020-08-16 18:15:12
wpvulndb
wpvulndb
Quiz And Survey Master < 4.7.9 - Stored Cross-Site Scripting (XSS) & CSRF
2016-12-15 00:00:00