Vulnerabilities > WP PRO Quiz Project > WP PRO Quiz > 0.26
| DATE | CVE | VULNERABILITY TITLE | RISK |
|---|---|---|---|
| 2021-11-01 | CVE-2020-36504 | Cross-Site Request Forgery (CSRF) vulnerability in Wp-Pro-Quiz Project Wp-Pro-Quiz The WP-Pro-Quiz WordPress plugin through 0.37 does not have CSRF check in place when deleting a quiz, which could allow an attacker to make a logged in admin delete arbitrary quiz on the blog | 6.5 |