CVE-2017-18601
The examapp plugin 1.0 for WordPress has XSS via exam input text fields.
5.4CVSS
5.3AI Score
0.0005EPSS
CVE-2017-18602
The examapp plugin 1.0 for WordPress has SQL injection via the wp-admin/admin.php?page=examapp_UserResult id parameter.
8.8CVSS
9.1AI Score
0.001EPSS