Vulnerabilities > AYS PRO > Quiz Maker > 6.4.4.1

DATE CVE VULNERABILITY TITLE RISK
2024-02-07 CVE-2024-1078 Missing Authorization vulnerability in Ays-Pro Quiz Maker
The Quiz Maker plugin for WordPress is vulnerable to unauthorized modification of data due to a missing capability check on the ays_quick_start() and add_question_rows() functions in all versions up to, and including, 6.5.2.4.
network
low complexity
ays-pro CWE-862
4.3
4.3
2024-02-07 CVE-2024-1079 Missing Authorization vulnerability in Ays-Pro Quiz Maker
The Quiz Maker plugin for WordPress is vulnerable to unauthorized access of data due to a missing capability check on the ays_show_results() function in all versions up to, and including, 6.5.2.4.
network
low complexity
ays-pro CWE-862
5.3
5.3
2024-01-12 CVE-2024-22027 Improper Input Validation vulnerability in Ays-Pro Quiz Maker
Improper input validation vulnerability in WordPress Quiz Maker Plugin prior to 6.5.0.6 allows a remote authenticated attacker to perform a Denial of Service (DoS) attack against external services.
network
low complexity
ays-pro CWE-20
6.5
6.5