Vulnerabilities > Kibokolabs > Chained Quiz > 1.3.2.3
DATE | CVE | VULNERABILITY TITLE | RISK |
---|---|---|---|
2023-04-07 | CVE-2023-25027 | Cross-site Scripting vulnerability in Kibokolabs Chained Quiz Auth. | 4.8 |
2022-12-02 | CVE-2022-4214 | Cross-site Scripting vulnerability in Kibokolabs Chained Quiz The Chained Quiz plugin for WordPress is vulnerable to Reflected Cross-Site Scripting via the 'ip' parameter on the 'chainedquiz_list' page in versions up to, and including, 1.3.2.3 due to insufficient input sanitization and output escaping. | 6.1 |
2022-12-02 | CVE-2022-4215 | Unspecified vulnerability in Kibokolabs Chained Quiz The Chained Quiz plugin for WordPress is vulnerable to Reflected Cross-Site Scripting via the 'date' parameter on the 'chainedquiz_list' page in versions up to, and including, 1.3.2.3 due to insufficient input sanitization and output escaping. | 6.1 |
2022-12-02 | CVE-2022-4218 | Unspecified vulnerability in Kibokolabs Chained Quiz The Chained Quiz plugin for WordPress is vulnerable to Cross-Site Request Forgery in versions up to, and including, 1.3.2.4. | 4.3 |
2022-12-02 | CVE-2022-4219 | Unspecified vulnerability in Kibokolabs Chained Quiz The Chained Quiz plugin for WordPress is vulnerable to Cross-Site Request Forgery in versions up to, and including, 1.3.2.4. | 4.3 |
2022-12-02 | CVE-2022-4220 | Unspecified vulnerability in Kibokolabs Chained Quiz The Chained Quiz plugin for WordPress is vulnerable to Cross-Site Request Forgery in versions up to, and including, 1.3.2.4. | 4.3 |