Mtouch Quiz Security Vulnerabilities and Issues — Mtouch Quiz CVE List

Lucene search

Mtouch Quiz ProjectMtouch Quiz

2 matches found

CVE•added 2022/08/08 2:15 p.m.•46 views

CVE-2022-2410

The mTouch Quiz WordPress plugin through 3.1.3 does not sanitise and escape some of its settings, which could allow high privilege users such as admin to perform Stored Cross-Site Scripting attacks when the unfiltered_html capability is disallowed (for example in multisite setup)

4.8CVSS4.7AI score0.00083EPSS

CVE•added 2015/01/13 3:59 p.m.•36 views

CVE-2014-100023

Multiple cross-site scripting (XSS) vulnerabilities in question.php in the mTouch Quiz before 3.0.7 for WordPress allow remote attackers to inject arbitrary web script or HTML via the quiz parameter to wp-admin/edit.php.

4.3CVSS6AI score0.00227EPSS