64 matches found
CVE-2021-47962
Savsoft Quiz 5.0 contains a persistent cross-site scripting vulnerability in the user account settings page that allows authenticated attackers to inject malicious HTML and JavaScript code. Attackers can inject script payloads into user profile fields at the edituser endpoint, which execute in th...
CVE-2021-47962
Technical details for CVE-2021-47962 are not publicly available in the provided documents. No explicit affected product versions, root cause, impact, or fixes are described here. Monitor for updates from official sources.
CVE-2021-47962
Savsoft Quiz 5.0 contains a persistent cross-site scripting vulnerability in the user account settings page that allows authenticated attackers to inject malicious HTML and JavaScript code. Attackers can inject script payloads into user profile fields at the edituser endpoint, which execute in th...
CVE-2021-47962 Savsoft Quiz 5.0 Persistent Cross-Site Scripting via User Settings
Savsoft Quiz 5.0 contains a persistent cross-site scripting vulnerability in the user account settings page that allows authenticated attackers to inject malicious HTML and JavaScript code. Attackers can inject script payloads into user profile fields at the edituser endpoint, which execute in th...
CVE-2021-47962 Savsoft Quiz 5.0 Persistent Cross-Site Scripting via User Settings
Savsoft Quiz 5.0 contains a persistent cross-site scripting vulnerability in the user account settings page that allows authenticated attackers to inject malicious HTML and JavaScript code. Attackers can inject script payloads into user profile fields at the edituser endpoint, which execute in th...
Savsoft Quiz 跨站脚本漏洞
Savsoft Quiz is a management platform for creating online exams and tests, developed by Savsoft’s individual developers using PHP. Version 5.0 of Savsoft Quiz has a cross-site scripting vulnerability. This vulnerability stems from a persistent cross-site scripting issue present on the user accoun...
CVE-2020-24609
TechKshetra Info Solutions Pvt. Ltd Savsoft Quiz 5.5 and earlier has XSS which can result in an attacker injecting the XSS payload in the User Registration section and each time the admin visits the manage user section from the admin panel, the XSS triggers and the attacker can steal the cookie v...
EUVD-2020-23025
Malware in sbrugna...
EUVD-2020-20025
Malware in sbrugna...
EUVD-2014-1056
Malware in sbrugna...
EUVD-2024-32808
Malicious code in bioql PyPI...
CVE-2024-34401
Savsoft Quiz 6.0 allows stored XSS via the index.php/quiz/insertquiz/ quizname parameter...
CVE-2024-4256
A vulnerability was found in Techkshetra Info Solutions Savsoft Quiz 6.0 and classified as problematic. Affected by this issue is some unknown functionality of the file /public/index.php/Qbank/editCategory of the component Category Page. The manipulation of the argument categoryname with the inpu...
CVE-2020-27515
A Cross Site Scripting XSS vulnerability in Savsoft Quiz v5.0 allows remote attackers to inject arbitrary web script or HTML via the Skype ID field...
CVE-2020-35349
Savsoft Quiz 5 is affected by: Cross Site Scripting XSS via fieldtitle aka a title on the custom fields page...
CVE-2024-34401
Savsoft Quiz 6.0 allows stored XSS via the index.php/quiz/insertquiz/ quizname parameter...
CVE-2024-34401
Savsoft Quiz 6.0 allows stored XSS via the index.php/quiz/insertquiz/ quizname parameter...
CVE-2024-34401
Savsoft Quiz 6.0 allows stored XSS via the index.php/quiz/insertquiz/ quizname parameter...
CVE-2024-34401
Savsoft Quiz 6.0 allows stored XSS via the index.php/quiz/insertquiz/ quizname parameter...
PT-2024-25859 · Savsoft · Savsoft Quiz
Name of the Vulnerable Software and Affected Versions: Savsoft Quiz version 6.0 Description: The issue allows stored XSS via the quiz name parameter in the "index.php/quiz/insert quiz/" endpoint. This enables potential attackers to inject malicious scripts into the application. Recommendations: F...