3 matches found
CVE-2022-0181
Reflected cross-site scripting vulnerability in Quiz And Survey Master versions prior to 7.3.7 allows a remote attacker to inject an arbitrary script via unspecified vectors...
CVE-2022-0181
The CVE-2022-0181 entry concerns the WordPress plugin Quiz And Survey Master by ExpressTech (versions prior to 7.3.7). The root cause is insufficient processing of user-supplied data, resulting in a reflected cross-site scripting (CWE-79) vulnerability. Impact states that an arbitrary script can ...
JVN#72788165: Multiple vulnerabilities in WordPress Plugin "Quiz And Survey Master"
WordPress Plugin "Quiz And Survey Master" provided by ExpressTech contains multiple vulnerabilities listed below. Cross-site request forgery CWE-352 - CVE-2022-0180 Version| Vector| Score ---|---|--- CVSS v3| CVSS:3.0/AV:N/AC:L/PR:N/UI:R/S:U/C:N/I:L/A:N| Base Score: 4.3 CVSS v2|...