Vulnerabilities > Expresstech > Critical
| DATE | CVE | VULNERABILITY TITLE | RISK |
|---|---|---|---|
| 2023-06-09 | CVE-2023-0291 | Unspecified vulnerability in Expresstech Quiz and Survey Master The Quiz And Survey Master for WordPress is vulnerable to authorization bypass due to a missing capability check on the function associated with the qsm_remove_file_fd_question AJAX action in versions up to, and including, 8.0.8. | 9.1 |
| 2022-11-18 | CVE-2022-41652 | Unspecified vulnerability in Expresstech Quiz and Survey Master Bypass vulnerability in Quiz And Survey Master plugin <= 7.3.10 on WordPress. | 9.8 |
| 2021-01-01 | CVE-2020-35951 | Missing Authentication for Critical Function vulnerability in Expresstech Quiz and Survey Master An issue was discovered in the Quiz and Survey Master plugin before 7.0.1 for WordPress. | 9.9 |
| 2021-01-01 | CVE-2020-35949 | Unrestricted Upload of File with Dangerous Type vulnerability in Expresstech Quiz and Survey Master An issue was discovered in the Quiz and Survey Master plugin before 7.0.1 for WordPress. | 9.8 |