24 matches found
CVE-2026-32342 WordPress Quiz Maker plugin <= 6.7.1.2 - Cross Site Request Forgery (CSRF) vulnerability
Cross-Site Request Forgery CSRF vulnerability in Ays Pro Quiz Maker quiz-maker allows Cross Site Request Forgery.This issue affects Quiz Maker: from n/a through = 6.7.1.2...
Exploit for SQL Injection in Ays-Pro Quiz_Maker
WordPress-Quiz-Maker-SQLi-Exploit-CVE-2025-10042- This Python...
WordPress Quiz Maker plugin <= 6.7.0.80 - Unauthenticated Sensitive Information Exposure vulnerability
Unauthenticated Sensitive Information Exposure vulnerability discovered by Rafshanzani Suhada in WordPress Plugin Quiz Maker versions = 6.7.0.80...
EUVD-2024-19633
Malicious code in bioql PyPI...
WordPress Quiz Maker Plugin <= 6.7.0.64 - Cross Site Request Forgery (CSRF) Vulnerability
Cross Site Request Forgery CSRF Vulnerability discovered by Muhammad Zidan Ali Mansur in WordPress Plugin Quiz Maker versions = 6.7.0.64...
WordPress Quiz Maker Plugin <= 6.7.0.65 - Sensitive Data Exposure Vulnerability
Sensitive Data Exposure Vulnerability discovered by Muhammad Zidan Ali Mansur in WordPress Plugin Quiz Maker versions = 6.7.0.65...
CVE-2025-58015
CVE-2025-58015 describes an unauthenticated exposure of sensitive data in the Quiz Maker Business WordPress plugin (affected versions include up to 6.7.0.61). The issue is a “Exposure of Sensitive Information to an Unauthorized Control Sphere” vulnerability that can reveal embedded sensitive data...
CVE-2025-58015 WordPress Quiz Maker Plugin <= 6.7.0.65 - Sensitive Data Exposure Vulnerability
Exposure of Sensitive System Information to an Unauthorized Control Sphere vulnerability in Ays Pro Quiz Maker quiz-maker allows Retrieve Embedded Sensitive Data.This issue affects Quiz Maker: from n/a through = 6.7.0.65...
CVE-2025-58015 WordPress Quiz Maker Plugin <= 6.7.0.65 - Sensitive Data Exposure Vulnerability
Exposure of Sensitive System Information to an Unauthorized Control Sphere vulnerability in Ays Pro Quiz Maker quiz-maker allows Retrieve Embedded Sensitive Data.This issue affects Quiz Maker: from n/a through = 6.7.0.65...
CVE-2025-58014 WordPress Quiz Maker Plugin <= 6.7.0.64 - Cross Site Request Forgery (CSRF) Vulnerability
Cross-Site Request Forgery CSRF vulnerability in Ays Pro Quiz Maker quiz-maker allows Cross Site Request Forgery.This issue affects Quiz Maker: from n/a through = 6.7.0.64...
CVE-2024-22027
Improper input validation vulnerability in WordPress Quiz Maker Plugin prior to 6.5.0.6 allows a remote authenticated attacker to perform a Denial of Service DoS attack against external services...
WordPress Quiz Maker plugin <= 6.5.9.8 - Admin+ Stored XSS vulnerability
Admin+ Stored XSS vulnerability discovered by Krugov Artyom in WordPress Plugin Quiz Maker versions = 6.5.9.8...
CVE-2025-30774 WordPress Quiz Maker plugin <= 6.6.8.7 - SQL Injection vulnerability
Improper Neutralization of Special Elements used in an SQL Command 'SQL Injection' vulnerability in Ays Pro Quiz Maker quiz-maker allows SQL Injection.This issue affects Quiz Maker: from n/a through = 6.6.8.7...
CVE-2025-30774
CVE-2025-30774 is an unauthenticated SQL injection in the WordPress plugin “Quiz Maker” (Quiz Maker Business). Affected: Quiz Maker versions up to 6.6.8.7 (no details on exact build metadata in the Initial/connected docs). Evidence in connected docs indicates the vulnerability exists in that plug...
WordPress Quiz Maker plugin <= 6.6.8.7 - SQL Injection vulnerability
SQL Injection vulnerability discovered by astra.r3verii Patchstack Alliance in WordPress Plugin Quiz Maker versions = 6.6.8.7...
CVE-2024-10628
The Quiz Maker Business, Developer, and Agency plugins for WordPress is vulnerable to SQL Injection via the ‘id’ parameter in all versions up to, and including, 8.8.0 Business, up to, and including, 21.8.0 Developer, and up to, and including, 31.8.0 Agency due to insufficient escaping on the user...
WordPress Quiz Maker plugin <= 6.5.8.3 - Unauthenticated SQL Injection via 'ays_questions' vulnerability
Unauthenticated SQL Injection via 'aysquestions' vulnerability discovered by Arkadiusz Hydzik in WordPress Plugin Quiz Maker versions = 6.5.8.3...
WordPress Quiz Maker Plugin <= 6.5.8.3 is vulnerable to SQL Injection
Software Quiz Maker Type Plugin Vulnerable versions = 6.5.8.3 Fixed in 6.5.8.4 OWASP Top 10 A1: Injection Classification SQL Injection CVE CVE-2024-6028 Patch priority High CVSS severity High 9.3 Developer Claim ownership PSID 91d50e136383 Credits Arkadiusz Hydzik Required privilege Unauthenticat...
WordPress Quiz Maker Plugin <= 6.5.2.4 is vulnerable to Broken Access Control
Software Quiz Maker Type Plugin Vulnerable versions = 6.5.2.4 Fixed in 6.5.2.5 OWASP Top 10 A5: Broken Access Control Classification Broken Access Control CVE CVE-2024-1078 Patch priority Low CVSS severity Low 4.3 Developer Claim ownership PSID 0653250f4b8f Credits Lucio Sá Required privilege...
CVE-2024-22027
Improper input validation vulnerability in WordPress Quiz Maker Plugin prior to 6.5.0.6 allows a remote authenticated attacker to perform a Denial of Service DoS attack against external services...