CVE-2019-14231
The CVE-2019-14231 entry applies to the WordPress plugin Agile Viral Quiz Maker – OnionBuzz (vulnerable before 1.2.2). The issue is a SQL injection in the ob_get_results nopriv AJAX handler via an unsanitized points parameter used in getResultByPointsTrivia. This allows an unauthenticated/unprivi...