3 matches found
CVE-2024-5606
The Quiz and Survey Master QSM WordPress plugin before 9.0.2 is vulnerable does not validate and escape the questionid parameter in the qsmbulkdeletequestionfromdatabase AJAX action, leading to a SQL injection exploitable by Contributors and above role...
CVE-2024-5606 Quiz And Survey Master < 9.0.2 - Contributor+ SQLi
The Quiz and Survey Master QSM WordPress plugin before 9.0.2 is vulnerable does not validate and escape the questionid parameter in the qsmbulkdeletequestionfromdatabase AJAX action, leading to a SQL injection exploitable by Contributors and above role...
CVE-2024-5606 Quiz And Survey Master < 9.0.2 - Contributor+ SQLi
The Quiz and Survey Master QSM WordPress plugin before 9.0.2 is vulnerable does not validate and escape the questionid parameter in the qsmbulkdeletequestionfromdatabase AJAX action, leading to a SQL injection exploitable by Contributors and above role...