WordPress Plugin Vulnerabilities
Quiz And Survey Master < 8.1.11 - Contributor+ Stored XSS
Description
The plugin does not properly sanitize and escape question titles, which could allow users with the Contributor role and above to perform Stored Cross-Site Scripting attacks
Proof of Concept
As a Contributor, create or edit a Quiz with the default theme and put the following payload in a question title: Q1<a<a> href="javascript:alert(/XSS/)">Click Me! The XSS will be triggered after a user submit the related Quiz embed in a page/post and click on the "Click Me!" link
Affects Plugins
References
Classification
Type
XSS
OWASP top 10
CWE
CVSS
Miscellaneous
Original Researcher
Andreas Damen
Submitter
Andreas Damen
Verified
Yes
WPVDB ID
Timeline
Publicly Published
2023-07-17 (about 9 months ago)
Added
2023-07-17 (about 9 months ago)
Last Updated
2023-08-01 (about 9 months ago)