Lucene search
WpvulndbWPVDB-ID:68E18A79-6C8D-4570-88E7-DD7A2256E6B8HistoryNov 29, 2022 - 12:00 a.m.
Quiz and Survey Master < 8.0.5 - Unauthenticated iFrame Injection
2022-11-2900:00:00
wpscan.com
9
plugin vulnerability
unauthenticated users
iframe injection
0.001 Low
EPSS
Percentile
29.0%
The plugin does not sanitise and escape the question[id] parameter, which could allow unauthenticated users to perform iFrame injection attack
| CPE | Name | Operator | Version |
|---|---|---|---|
| quiz-master-next | lt | 8.0.5 |
Related
cve
cve
CVE-2022-4032
2022-11-29 21:15:12
osv
osv
CVE-2022-4032
2022-11-29 21:15:12
prion
prion
Input validation
2022-11-29 21:15:00
cnvd
cnvd
WordPress Quiz and Survey Master plugin iFrame injection vulnerability
2022-12-01 00:00:00
cvelist
cvelist
CVE-2022-4032
2022-11-29 20:23:15
nvd
nvd
CVE-2022-4032
2022-11-29 21:15:12