Vulnerabilities > AYS PRO > Quiz Maker > 6.5.2.4

DATE CVE VULNERABILITY TITLE RISK
2024-02-07 CVE-2024-1078 Missing Authorization vulnerability in Ays-Pro Quiz Maker
The Quiz Maker plugin for WordPress is vulnerable to unauthorized modification of data due to a missing capability check on the ays_quick_start() and add_question_rows() functions in all versions up to, and including, 6.5.2.4.
network
low complexity
ays-pro CWE-862
4.3
4.3
2024-02-07 CVE-2024-1079 Missing Authorization vulnerability in Ays-Pro Quiz Maker
The Quiz Maker plugin for WordPress is vulnerable to unauthorized access of data due to a missing capability check on the ays_show_results() function in all versions up to, and including, 6.5.2.4.
network
low complexity
ays-pro CWE-862
5.3
5.3