CVE-2016-11085 – php/qmn_options_questions_tab.php in the quiz-master-next plugin before 4.7.9 for WordPres …

16 August 2020

Vuln ID: CVE-2016-11085

Published: 2020-08-16 18:15:12Z

Description: php/qmn_options_questions_tab.php in the quiz-master-next plugin before 4.7.9 for WordPress allows CSRF, with resultant stored XSS, via the question_name parameter because js/admin_question.js mishandles parsing inside of a SCRIPT element.

Source: NVD.NIST.GOV

Date:

16 August 2020

Categorie(s):

NVD

Tag(s):

NVD

Too many ICS assets are exposed to the public internet17 May 2024
New infosec products of the week: May 17, 202417 May 2024
One big problem SOC teams can actually solve with AI17 May 2024
Unpacking XDR: Coverage, stitching, accregation — and the GenAI wildcard17 May 2024
The enterprise browser: The first win-win-win for CISOs, CIOs and end users17 May 2024