Vulnerabilities > Kibokolabs > Chained Quiz > 1.0

DATE CVE VULNERABILITY TITLE RISK
2023-04-07 CVE-2023-25027 Cross-site Scripting vulnerability in Kibokolabs Chained Quiz
Auth.
network
low complexity
kibokolabs CWE-79
4.8
4.8
2022-12-02 CVE-2022-4208 Unspecified vulnerability in Kibokolabs Chained Quiz
The Chained Quiz plugin for WordPress is vulnerable to Reflected Cross-Site Scripting via the 'datef' parameter on the 'chainedquiz_list' page in versions up to, and including, 1.3.2 due to insufficient input sanitization and output escaping.
network
low complexity
kibokolabs
6.1
6.1
2022-12-02 CVE-2022-4209 Unspecified vulnerability in Kibokolabs Chained Quiz
The Chained Quiz plugin for WordPress is vulnerable to Reflected Cross-Site Scripting via the 'pointsf' parameter on the 'chainedquiz_list' page in versions up to, and including, 1.3.2 due to insufficient input sanitization and output escaping.
network
low complexity
kibokolabs
6.1
6.1
2022-12-02 CVE-2022-4210 Unspecified vulnerability in Kibokolabs Chained Quiz
The Chained Quiz plugin for WordPress is vulnerable to Reflected Cross-Site Scripting via the 'dnf' parameter on the 'chainedquiz_list' page in versions up to, and including, 1.3.2 due to insufficient input sanitization and output escaping.
network
low complexity
kibokolabs
6.1
6.1
2022-12-02 CVE-2022-4211 Unspecified vulnerability in Kibokolabs Chained Quiz
The Chained Quiz plugin for WordPress is vulnerable to Reflected Cross-Site Scripting via the 'emailf' parameter on the 'chainedquiz_list' page in versions up to, and including, 1.3.2 due to insufficient input sanitization and output escaping.
network
low complexity
kibokolabs
6.1
6.1
2022-12-02 CVE-2022-4212 Unspecified vulnerability in Kibokolabs Chained Quiz
The Chained Quiz plugin for WordPress is vulnerable to Reflected Cross-Site Scripting via the 'ipf' parameter on the 'chainedquiz_list' page in versions up to, and including, 1.3.2 due to insufficient input sanitization and output escaping.
network
low complexity
kibokolabs
6.1
6.1
2022-12-02 CVE-2022-4213 Unspecified vulnerability in Kibokolabs Chained Quiz
The Chained Quiz plugin for WordPress is vulnerable to Reflected Cross-Site Scripting via the 'dn' parameter on the 'chainedquiz_list' page in versions up to, and including, 1.3.2.2 due to insufficient input sanitization and output escaping.
network
low complexity
kibokolabs
6.1
6.1
2022-12-02 CVE-2022-4214 Cross-site Scripting vulnerability in Kibokolabs Chained Quiz
The Chained Quiz plugin for WordPress is vulnerable to Reflected Cross-Site Scripting via the 'ip' parameter on the 'chainedquiz_list' page in versions up to, and including, 1.3.2.3 due to insufficient input sanitization and output escaping.
network
low complexity
kibokolabs CWE-79
6.1
6.1
2022-12-02 CVE-2022-4215 Unspecified vulnerability in Kibokolabs Chained Quiz
The Chained Quiz plugin for WordPress is vulnerable to Reflected Cross-Site Scripting via the 'date' parameter on the 'chainedquiz_list' page in versions up to, and including, 1.3.2.3 due to insufficient input sanitization and output escaping.
network
low complexity
kibokolabs
6.1
6.1
2022-12-02 CVE-2022-4216 Unspecified vulnerability in Kibokolabs Chained Quiz
The Chained Quiz plugin for WordPress is vulnerable to Stored Cross-Site Scripting via the 'facebook_appid' parameter in versions up to, and including, 1.3.2.2 due to insufficient input sanitization and output escaping.
network
low complexity
kibokolabs
4.8
4.8