Quiz_and_survey_master - Vulncode-DB

Note:

This project will be discontinued after December 13, 2021. [more]

Product:
Quiz_and_survey_master
(Expresstech)

Repositories	Unknown: This might be proprietary software.
#Vulnerabilities	35

Date	Id	Summary	Products	Score	Patch	Annotated
2021-08-18	CVE-2021-20792	Cross-site scripting vulnerability in Quiz And Survey Master versions prior to 7.1.14 allows a remote attacker to inject arbitrary script via unspecified vectors.	Quiz_and_survey_master	6.1
2021-10-11	CVE-2021-24691	The Quiz And Survey Master WordPress plugin before 7.3.2 does not escape the Quiz Url Slug setting before outputting it in some pages, which could allow high privilege users to perform Cross-Site Scripting attacks even when the unfiltered_html capability is disallowed	Quiz_and_survey_master	4.8
2022-01-17	CVE-2022-0180	Cross-site request forgery (CSRF) vulnerability in Quiz And Survey Master versions prior to 7.3.7 allows a remote attacker to hijack the authentication of administrators and conduct arbitrary operations via a specially crafted web page.	Quiz_and_survey_master	8.8
2022-01-17	CVE-2022-0181	Reflected cross-site scripting vulnerability in Quiz And Survey Master versions prior to 7.3.7 allows a remote attacker to inject an arbitrary script via unspecified vectors.	Quiz_and_survey_master	6.1
2022-01-17	CVE-2022-0182	Stored cross-site scripting vulnerability in Quiz And Survey Master versions prior to 7.3.7 allows a remote authenticated attacker to inject an arbitrary script via an website that uses Quiz And Survey Master.	Quiz_and_survey_master	5.4
2022-10-28	CVE-2021-36863	Auth. (contributor+) Stored Cross-Site Scripting (XSS) vulnerability in ExpressTech Quiz And Survey Master plugin <= 7.3.4 on WordPress.	Quiz_and_survey_master	5.4
2022-10-28	CVE-2021-36864	Auth. (editor+) Reflected Cross-Site Scripting (XSS) vulnerability in ExpressTech Quiz And Survey Master plugin <= 7.3.4 on WordPress.	Quiz_and_survey_master	5.4
2022-10-28	CVE-2021-36898	Auth. SQL Injection (SQLi) vulnerability in Quiz And Survey Master plugin <= 7.3.4 on WordPress.	Quiz_and_survey_master	7.2
2022-11-17	CVE-2021-36905	Multiple Auth. (contributor+) Stored Cross-Site Scripting (XSS) vulnerabilities in Quiz And Survey Master plugin <= 7.3.4 on WordPress.	Quiz_and_survey_master	5.4
2022-11-18	CVE-2022-40698	Auth. (subscriber+) Cross-Site Scripting (XSS) vulnerability in Quiz And Survey Master plugin <= 7.3.10 on WordPress.	Quiz_and_survey_master	6.1