Today > vulnerabilities   -   You can now download lists of IOCs here!

CVE-2024-6025

July 11, 2024, 1:05 p.m.

Product(s) Impacted

Quiz and Survey Master (QSM) WordPress plugin

  • before 9.0.5

Description

The Quiz and Survey Master (QSM) WordPress plugin before 9.0.5 does not sanitise and escape some of its Quiz settings, which could allow contributors and higher to perform Stored Cross-Site Scripting attacks

Weaknesses

Date

Published: July 11, 2024, 6:15 a.m.

Last Modified: July 11, 2024, 1:05 p.m.

Status : Awaiting Analysis

CVE has been recently published to the CVE List and has been received by the NVD.

More info

Source

contact@wpscan.com

References

https://wpscan.com/ contact@wpscan.com