The Quiz And Survey Master WordPress plugin before 8.1.11 does not properly sanitize and escape question titles, which could allow users with the Contributor role and above to perform Stored Cross-Site Scripting attacks
History

No history.

cve-icon MITRE

Status: PUBLISHED

Assigner: WPScan

Published: 2023-08-07T14:31:20.665Z

Updated: 2024-08-02T07:01:55.979Z

Reserved: 2023-07-10T09:02:10.344Z

Link: CVE-2023-3575

cve-icon Vulnrichment

No data.

cve-icon NVD

Status : Modified

Published: 2023-08-07T15:15:11.460

Modified: 2024-11-21T08:17:35.033

Link: CVE-2023-3575

cve-icon Redhat

No data.