QuizandSurveyMaster/quiz_master_next

QuizandSurveyMaster/quiz_master_next

quizandsurveymaster.com

Releases165

Frequency3 weeks 4 days

Last Release 2 months ago

Stars96

Quiz And Survey Master - A WordPress Plugin For Creating Quizzes, tests, exams and surveys

Log in to subscribe

CVE History

CVE	Published	CVSS v3	CVSS v2
CVE-2019-17599 ↗	Dec 13, 2019Friday, 13 December 2019, 14:15	6.1 MEDIUM	4.3 MEDIUM
The quiz-master-next (aka Quiz And Survey Master) plugin before 6.3.5 for WordPress is affected by: Cross Site Scripting (XSS). The impact is: Allows an attacker to execute arbitrary HTML and JavaScript code via the from or till parameter (and/or the quiz_id parameter). The component is: admin/quiz-options-page.php. The attack vector is: When the Administrator is logged in, a reflected XSS may execute upon a click on a malicious URL.
CVE-2019-9575 ↗	Mar 5, 2019Tuesday, 5 March 2019, 21:29	—	4.3 MEDIUM
The Quiz And Survey Master plugin 6.0.4 for WordPress allows wp-admin/admin.php?page=mlw_quiz_results quiz_id XSS.