Lucene search
WpvulndbWPVDB-ID:F8AC6341-FE07-464B-9BCD-DA3FA2A27C88HistoryOct 21, 2022 - 12:00 a.m.
Quiz And Survey Master < 7.3.5 - Contributor+ Stored XSS
2022-10-2100:00:00
wpscan.com
8
plugin
sanitise
parameters
stored xss
cross-site scripting
attacks
contributor
software
EPSS
0.001
Percentile
19.4%
The plugin does not sanitise and escape some parameters, which could allow users with a role as low as Contributor to perform Stored Cross-Site Scripting attacks
Related
cvelist
cvelist
prion
prion
Cross site scripting
2022-11-17 23:15:00
nvd
nvd
CVE-2021-36905
2022-11-17 23:15:11
patchstack
patchstack
cve
cve
CVE-2021-36905
2022-11-17 23:15:11