2 matches found
CVE-2026-13422
creationtimestamp| type| source ---|---|--- 2026-06-27 06:03:23+00:00| seen| https://bsky.app/profile/cve.skyfleet.blue/post/3mparxtkgla2b 2026-06-27 10:16:07+00:00| seen| https://bsky.app/profile/atomicedge.bsky.social/post/3mpba3raesw2v 2026-06-29 19:26:20+00:00| seen|...
CVE-2026-13422
The HD Quiz plugin for WordPress is vulnerable to Cross-Site Request Forgery in versions 2.2.0 to 2.2.1. This is due to missing or incorrect nonce validation on the hdqvalidatenonce function. This makes it possible for unauthenticated attackers to delete or modify quizzes and questions, create ne...