Lucene search
K

4 matches found

NVD
NVD
added 2022/11/29 9:15 p.m.28 views

CVE-2022-4032

The Quiz and Survey Master plugin for WordPress is vulnerable to iFrame Injection via the 'questionid' parameter in versions up to, and including, 8.0.4 due to insufficient input sanitization and output escaping that allowed iframe tags to be injected. This makes it possible for unauthenticated...

7.2CVSS0.00724EPSS
Exploits0References3
CVE
CVE
added 2022/11/29 8:23 p.m.72 views

CVE-2022-4032

The CVE-2022-4032 entry concerns the WordPress plugin Quiz and Survey Master. Affected versions are up to and including 8.0.4. The root cause is insufficient input sanitization and output escaping for the question[id] parameter, allowing unauthenticated attackers to inject iframe tags into pages....

7.2CVSS6.3AI score0.00724EPSS
Exploits0References3Affected Software1
Vulnrichment
Vulnrichment
added 2022/11/29 8:23 p.m.12 views

CVE-2022-4032 Quiz and Survey Master <= 8.0.4 - Unauthenticated iFrame Injection via Paragraph and Short Answer

The Quiz and Survey Master plugin for WordPress is vulnerable to iFrame Injection via the 'questionid' parameter in versions up to, and including, 8.0.4 due to insufficient input sanitization and output escaping that allowed iframe tags to be injected. This makes it possible for unauthenticated...

7.2CVSS6.4AI score0.00724EPSS
Exploits0References3
OSV
OSV
added 2022/11/29 8:23 p.m.22 views

CVE-2022-4032 Quiz and Survey Master <= 8.0.4 - Unauthenticated iFrame Injection via Paragraph and Short Answer

The Quiz and Survey Master plugin for WordPress is vulnerable to iFrame Injection via the 'questionid' parameter in versions up to, and including, 8.0.4 due to insufficient input sanitization and output escaping that allowed iframe tags to be injected. This makes it possible for unauthenticated...

7.2CVSS6.4AI score0.00724EPSS
Exploits0References5
Rows per page
Query Builder