3 matches found
CVE-2025-58675
CVE-2025-58675 : CSRF vulnerability in Interact: Embed A Quiz On Your Site. Affected software: Interact: Embed A Quiz On Your Site (from n/a through 3.1). From the description, the weakness is Cross-Site Request Forgery with network attack vector, low likelihood requirements, and user interaction...
PT-2025-38963
Name of the Vulnerable Software and Affected Versions Interact: Embed A Quiz On Your Site versions through 3.1 Description A Cross-Site Request Forgery CSRF issue exists in Interact: Embed A Quiz On Your Site. This allows attackers to perform actions on behalf of an unsuspecting user...
CVE-2023-5659 Interact: Embed A Quiz On Your Site <= 3.0.7 - Authenticated (Contributor+) Stored Cross-Site Scripting via Shortcode
The Interact: Embed A Quiz On Your Site plugin for WordPress is vulnerable to Stored Cross-Site Scripting via the plugin's 'interact-quiz' shortcode in all versions up to, and including, 3.0.7 due to insufficient input sanitization and output escaping on user supplied attributes. This makes it...