WordPress Plugin Vulnerabilities

Chained Quiz <= 0.9.8 - Cross-Site Scripting (XSS)

Description

The Chained Quiz WordPress plugin was affected by a Cross-Site Scripting (XSS) security vulnerability.

Affects Plugins

Plugin icon
chained-quiz
Fixed in 0.9.9

References

URL
https://plugins.trac.wordpress.org/changeset/1558906

Classification

Type
XSS
OWASP top 10
A7: Cross-Site Scripting (XSS)
CWE
CWE-79

Miscellaneous

Submitter
ethicalhack3r
Submitter twitter
ethicalhack3r
Verified
No
WPVDB ID
38d94c28-438f-4f57-b75a-c6dce6847091

Timeline

Publicly Published
2016-12-21 (about 9 years ago)
Added
2017-01-04 (about 9 years ago)
Last Updated
2019-11-01 (about 6 years ago)

Other

Published
Title
Published
2014-08-01
Title
S3 Video 0.982 - preview_video.php base Parameter XSS
Published
2025-08-31
Title
Jobmonster < 4.7.9 - Reflected Cross-Site Scripting
Published
2024-12-17
Title
Inline Footnotes <= 2.3.0 - Authenticated (Contributor+) Stored Cross-Site Scripting
Published
2022-03-29
Title
Anti-Malware Security and Brute-Force Firewall < 4.20.96 - Reflected Cross-Site Scripting
Published
2024-11-22
Title
Formidable Forms < 6.16.2 - Reflected Cross-Site Scripting via Custom HTML Form Parameter