4 matches found
CVE-2023-6166
The Quiz Maker WordPress plugin before 6.4.9.5 does not escape generated URLs before outputting them in attributes, leading to Reflected Cross-Site Scripting...
CVE-2023-6166
creationtimestamp| type| source ---|---|--- 2023-12-26 20:26:58+00:00| seen| https://t.me/ctinow/159445 2024-01-02 23:16:46+00:00| seen| https://t.me/ctinow/162081...
CVE-2023-6166
The CVE-2023-6166 entry corresponds to the Quiz Maker WordPress plugin prior to version 6.4.9.5, which does not escape generated URLs in attributes, enabling Reflected Cross-Site Scripting. Affected component: Quiz Maker WordPress plugin (pre-6.4.9.5). Root cause: lack of URL escaping in output a...
CVE-2023-6166 Quiz Maker < 6.4.9.5 - Reflected Cross-Site Scripting
The Quiz Maker WordPress plugin before 6.4.9.5 does not escape generated URLs before outputting them in attributes, leading to Reflected Cross-Site Scripting...