Quiz Tool Lite <= 2.3.15 – Multiple Admin+ Stored Cross-Site Scripting | CVE 2021-24701 | Plugin Vulnerabilities

Description

The plugin does not sanitize multiple input fields used when creating or managing quizzes and in other setting options, allowing high privilege users to perform Cross-Site Scripting attacks even when the unfiltered_html capability is disallowed.

Proof of Concept

1. When creating a new Question Pot, you can inject an XSS payload like  "><script>alert(1)</script> in the Quiz Name.
2. When adding a new quiz, you can inject an XSS payload like  "><script>alert(1)</script> in the Quiz Name.
3. When managing the plugin's Email Setting, you can inject an XSS payload like  "><script>alert(1)</script> in the "And from this name" field.

Affects Plugins

No known fix

References

CVE

Classification

Type

XSS

OWASP top 10

A7: Cross-Site Scripting (XSS)

CWE

CVSS

Miscellaneous

Original Researcher

Shivam Rai

Submitter

Shivam Rai

Submitter twitter

Verified

Yes

WPVDB ID

f7b95789-43f2-42a5-95e6-eb7accbd5ed3

Timeline

Publicly Published

2021-10-11 (about 4 years ago)

Added

2021-10-11 (about 4 years ago)

Last Updated

2022-04-08 (about 3 years ago)

Other

Published

Title

Published

2025-10-03

Title

Trinity Audio < 5.21.0 - Reflected Cross-Site Scripting

Published

2024-10-31

Title

Business <= 1.3 - Authenticated (Contributor+) Stored Cross-Site Scripting

Published

2015-04-07

Title

WP Super Cache < 1.4.3 - Stored Cross-Site Scripting (XSS)

Published

2025-01-07

Title

StorePress <= 1.0.12 - Authenticated (Contributor+) Stored Cross-Site Scripting

Published

2025-03-04

Title

Stylish Google Sheet Reader < 4.1 - Reflected XSS