Expresstech

Quiz And Survey Master

49 Schwachstellen gefunden.

Hinweis: Diese Liste kann unvollständig sein. Daten werden ohne Gewähr im Ursprungsformat bereitgestellt.
8.5

CVE-2025-67987

  • EPSS 0.03%
  • Veröffentlicht 20.02.2026 15:46:31
  • Zuletzt bearbeitet 24.02.2026 20:27:43

Improper Neutralization of Special Elements used in an SQL Command ('SQL Injection') vulnerability in ExpressTech Systems Quiz And Survey Master quiz-master-next allows SQL Injection.This issue affects Quiz And Survey Master: from n/a through <= 10.3...

4.3

CVE-2026-25329

  • EPSS 0.03%
  • Veröffentlicht 19.02.2026 08:26:56
  • Zuletzt bearbeitet 26.02.2026 20:31:36

Missing Authorization vulnerability in ExpressTech Systems Quiz And Survey Master quiz-master-next allows Exploiting Incorrectly Configured Access Control Security Levels.This issue affects Quiz And Survey Master: from n/a through <= 10.3.4.

5.3

CVE-2026-25324

  • EPSS 0.04%
  • Veröffentlicht 19.02.2026 08:26:56
  • Zuletzt bearbeitet 20.02.2026 17:25:52

Authorization Bypass Through User-Controlled Key vulnerability in ExpressTech Systems Quiz And Survey Master quiz-master-next allows Exploiting Incorrectly Configured Access Control Security Levels.This issue affects Quiz And Survey Master: from n/a ...

8.8

CVE-2026-24358

  • EPSS 0.05%
  • Veröffentlicht 22.01.2026 16:52:44
  • Zuletzt bearbeitet 26.01.2026 19:16:34

Missing Authorization vulnerability in ExpressTech Systems Quiz And Survey Master quiz-master-next allows Exploiting Incorrectly Configured Access Control Security Levels.This issue affects Quiz And Survey Master: from n/a through <= 10.3.3.

6.5

CVE-2025-9318

  • EPSS 0.03%
  • Veröffentlicht 06.01.2026 09:20:59
  • Zuletzt bearbeitet 09.01.2026 13:24:30

The Quiz and Survey Master (QSM) – Easy Quiz and Survey Maker plugin for WordPress is vulnerable to time-based SQL Injection via the ‘is_linking’ parameter in all versions up to, and including, 10.3.1 due to insufficient escaping on the user supplied...

6.5

CVE-2025-9637

  • EPSS 0.09%
  • Veröffentlicht 06.01.2026 09:20:58
  • Zuletzt bearbeitet 09.01.2026 13:25:57

The Quiz and Survey Master (QSM) – Easy Quiz and Survey Maker plugin for WordPress is vulnerable to unauthorized access and modification of data due to a missing capability and status checks on multiple functions in all versions up to, and including,...

4.3

CVE-2025-9294

  • EPSS 0.03%
  • Veröffentlicht 06.01.2026 08:21:49
  • Zuletzt bearbeitet 09.01.2026 13:23:13

The Quiz and Survey Master (QSM) – Easy Quiz and Survey Maker plugin for WordPress is vulnerable to unauthorized loss of data due to a missing capability check on the qsm_dashboard_delete_result function in all versions up to, and including, 10.3.1. ...

5.3

CVE-2025-63054

  • EPSS 0.04%
  • Veröffentlicht 09.12.2025 14:52:32
  • Zuletzt bearbeitet 20.01.2026 15:18:37

Missing Authorization vulnerability in ExpressTech Systems Quiz And Survey Master quiz-master-next allows Exploiting Incorrectly Configured Access Control Security Levels.This issue affects Quiz And Survey Master: from n/a through <= 10.3.1.

9.8

CVE-2025-49401

  • EPSS 0.1%
  • Veröffentlicht 05.09.2025 16:15:40
  • Zuletzt bearbeitet 05.09.2025 17:47:10

Deserialization of Untrusted Data vulnerability in ExpressTech Systems Quiz And Survey Master allows Object Injection. This issue affects Quiz And Survey Master: from n/a through 10.2.5.

8.5

CVE-2025-55708

  • EPSS 0.03%
  • Veröffentlicht 14.08.2025 18:21:34
  • Zuletzt bearbeitet 15.08.2025 13:12:51

Improper Neutralization of Special Elements used in an SQL Command ('SQL Injection') vulnerability in ExpressTech Systems Quiz And Survey Master allows SQL Injection. This issue affects Quiz And Survey Master: from n/a through 10.2.4.