WPScan
How it worksPricing
Vulnerabilities
WordPressPluginsThemesStatsSubmit vulnerabilities
For developers
StatusAPI detailsCLI scanner
Contact

WordPress Plugin Vulnerabilities

Quiz And Survey Master – Best Quiz, Exam and Survey Plugin for WordPress

2022-11-29
Quiz and Survey Master < 8.0.5 - Improper Input Validation
Fixed in version 8.0.5
2022-11-29
Quiz and Survey Master < 8.0.5 - Unauthenticated iFrame Injection
Fixed in version 8.0.5
2022-10-21
Quiz And Survey Master < 7.3.11 - Subscriber+ XSS
Fixed in version 7.3.11
2022-10-21
Quiz And Survey Master < 7.3.11 - Bypass
Fixed in version 7.3.11
2022-10-21
Quiz And Survey Master < 7.3.11 - Sensitive Information Disclosure
Fixed in version 7.3.11
2022-10-21
Quiz And Survey Master < 7.3.5 - Contributor+ Stored XSS
Fixed in version 7.3.5
2022-10-21
Quiz And Survey Master < 7.3.7 - Multiple Author+ IDOR
Fixed in version 7.3.7
2022-10-21
Quiz And Survey Master < 7.3.5 - Contributor+ Stored Cross-Site Scripting
Fixed in version 7.3.5
2022-10-21
Quiz And Survey Master < 7.3.5 - Reflected Cross-Site Scripting
Fixed in version 7.3.5
2022-10-21
Quiz And Survey Master < 7.3.5 - Admin+ SQL Injection
Fixed in version 7.3.5
2022-09-29
Quiz And Survey Master < 7.3.5 - Quiz Update via IDOR
Fixed in version 7.3.5
2022-01-12
Quiz And Survey Master < 7.3.7 - CSRF
Fixed in version 7.3.7
2022-01-12
Quiz And Survey Master < 7.3.7 - Low Privilege Stored Cross-Site Scripting
Fixed in version 7.3.7
2022-01-12
Quiz And Survey Master < 7.3.7 - Reflected Cross-Site Scripting
Fixed in version 7.3.7
2021-09-13
Quiz And Survey Master < 7.3.2 - Admin+ Stored Cross-Site Scripting
Fixed in version 7.3.2
2021-08-10
Quiz And Survey Master < 7.1.14 - Reflected Cross-Site Scripting
Fixed in version 7.1.14
2021-06-03
Quiz And Survey Master < 7.1.18 - Reflected Cross-Site Scripting (XSS)
Fixed in version 7.1.18
2021-06-03
Quiz And Survey Master < 7.1.19 - Unauthenticated Stored Cross-Site Scripting (XSS)
Fixed in version 7.1.19
2021-03-26
Quiz And Survey Master < 7.1.14 - Authenticated SQL injection via Rest API
Fixed in version 7.1.14
2021-03-26
Quiz And Survey Master < 7.1.12 - Authenticated SQL injection via shortcode
Fixed in version 7.1.12
2020-08-29
Quiz and Survey Master < 7.0.2 - Unauthenticated Arbitrary File Upload
Fixed in version 7.0.2
2020-08-13
Quiz and Survey Master < 7.0.1 - Arbitrary File Upload
Fixed in version 7.0.1
2020-08-13
Quiz and Survey Master < 7.0.1 - Unauthenticated Arbitrary File Deletion
Fixed in version 7.0.1
2020-07-29
Quiz And Survey Master < 7.0.0 - Authenticated Stored Cross-Site Scripting (XSS)
Fixed in version 7.0.0
2019-11-13
Quiz And Survey Master < 6.3.5 - Authenticated Reflected XSS
Fixed in version 6.3.5
2019-02-05
Quiz And Survey Master < 6.2.2 - Authenticated Cross-Site Scripting (XSS)
Fixed in version 6.2.2
2016-12-15
Quiz And Survey Master < 4.7.9 - Stored Cross-Site Scripting (XSS) & CSRF
Fixed in version 4.7.9
2015-07-16
Quiz And Survey Master < 4.4.4 - Authenticated Blind SQL Injection
Fixed in version 4.4.4