WordPress Plugin Vulnerabilities

mTouch Quiz <= 3.1.2 - Multiple Vulnerabilities XSS & CSRF

Description

The mTouch Quiz WordPress plugin was affected by a Multiple Vulnerabilities XSS & CSRF security vulnerability.

Affects Plugins

Plugin icon
mtouch-quiz
Fixed in 3.1.3

References

CVE
CVE-2015-9389
CVE
CVE-2015-9388
CVE
CVE-2015-9387
CVE
CVE-2015-9386
URL
https://www.davidsopas.com/multiple-vulns-on-mtouch-quiz-wordpress-plugin/

Miscellaneous

Submitter
ethicalhack3r
Submitter twitter
ethicalhack3r
Verified
No
WPVDB ID
b3052a9e-37af-4ce3-8be6-aae53af4569c

Timeline

Publicly Published
2015-12-18 (about 10 years ago)
Added
2015-12-18 (about 10 years ago)
Last Updated
2020-09-22 (about 5 years ago)

Other

Published
Title
Published
2015-05-13
Title
Booking Calendar Contact Form <= 1.0.2 - Multiple Authenticated Vulnerabilities
Published
2014-08-01
Title
Enable Media Replace <= 2.3 - Multiple Vulnerabilities
Published
2019-12-25
Title
bbPress Login Register Links On Forum Topic Pages < 2.8.5 - CSRF to Stored XSS
Published
2016-07-06
Title
WP Maintenance Mode <= 2.0.6 - Authenticated Multisite Remote Code Execution
Published
2014-08-01
Title
RokNewsPager <= 1.17 - XSS,DoS,Disclosure,Upload Vulnerabilities