5 matches found
CVE-2024-11323
The AI Quiz | Quiz Maker plugin for WordPress is vulnerable to unauthorized modification of data that can lead to privilege escalation due to a missing capability check on the aiquizupdatestyle function in all versions up to, and including, 1.1. This makes it possible for authenticated attackers,...
CVE-2024-11323
creationtimestamp| type| source ---|---|--- 2024-12-06 09:06:18+00:00| seen| https://infosec.exchange/users/cve/statuses/113605081662670165 2024-12-06 10:36:03+00:00| seen| https://t.me/cvedetector/12188...
CVE-2024-11323 AI Quiz | Quiz Maker <= 1.1 - Missing Authorization to Authenticated (Subscriber+) Arbitrary Options Update
The AI Quiz | Quiz Maker plugin for WordPress is vulnerable to unauthorized modification of data that can lead to privilege escalation due to a missing capability check on the aiquizupdatestyle function in all versions up to, and including, 1.1. This makes it possible for authenticated attackers,...
CVE-2024-11323
CVE-2024-11323 affects the WordPress plugin AI Quiz | Quiz Maker (≤1.1). The root cause is a missing capability check in ai_quiz_update_style(), allowing authenticated users with Subscriber+ privileges to modify arbitrary options and potentially escalate to admin by changing default registration ...
CVE-2024-11323 AI Quiz | Quiz Maker <= 1.1 - Missing Authorization to Authenticated (Subscriber+) Arbitrary Options Update
The AI Quiz | Quiz Maker plugin for WordPress is vulnerable to unauthorized modification of data that can lead to privilege escalation due to a missing capability check on the aiquizupdatestyle function in all versions up to, and including, 1.1. This makes it possible for authenticated attackers,...