Web Based Quiz System 1.0 is affected by cross-site scripting (XSS) in admin.php through the options parameter.
6.1CVSS
6AI Score
0.001EPSS
Web Based Quiz System 1.0 is affected by cross-site scripting (XSS) in register.php through the name parameter.
6.1CVSS
6AI Score
0.001EPSS
Web Based Quiz System v1.0 was discovered to contain a SQL injection vulnerability via the eid parameter at welcome.php.
8.8CVSS
8.9AI Score
0.001EPSS
Web Based Quiz System v1.0 was discovered to contain a SQL injection vulnerability via the qid parameter at update.php.
9.8CVSS
9.7AI Score
0.002EPSS
Web Based Quiz System v1.0 transmits user passwords in plaintext during the authentication process, allowing attackers to obtain users' passwords via a bruteforce attack.
7.5CVSS
7.4AI Score
0.002EPSS