Quiz And Survey Master CVEs and Security Vulnerabilities

Filtered by vendor Expresstech Subscriptions

Filtered by product Quiz And Survey Master Subscriptions

Switch to Advanced Search (Beta)

Total 41 CVE

CVE	Vendors	Products	Updated	CVSS v3.1
CVE-2024-8758	1 Expresstech	1 Quiz And Survey Master	2024-10-07	4.8 Medium
The Quiz and Survey Master (QSM) WordPress plugin before 9.1.3 does not sanitise and escape some of its settings, which could allow high privilege users such as admin to perform Stored Cross-Site Scripting attacks even when the unfiltered_html capability is disallowed (for example in multisite setup).

« first previous Page 3 of 3.