Chained Quiz

Wordfence Intelligence   >   Vulnerability Database   >   WordPress Plugins   >   Chained Quiz

Information

Software Type Plugin
Software Slug chained-quiz (view on wordpress.org)
Software Status Active
Software Author prasunsen
Software Website calendarscripts.info
Software Downloads 103,692
Software Active Installs 2,000
Software Record Last Updated May 7, 2024

20 Vulnerabilities

Chained Quiz <= 1.3.2.5 - Authenticated (Admin+) Stored Cross-Site Scripting
5.5
CVE-2023-25027
Feb 6, 2023
Researcher: yuyudhn
Chained Quiz <= 1.3.2.4 - Cross-Site Request Forgery to Arbitrary Quiz Deletion and Copying
5.4
CVE-2022-4218
Dec 2, 2022
Researcher: Muhammad Zeeshan (Xib3rR4dAr)
Chained Quiz <= 1.3.2.2 - Reflected Cross-Site Scripting via dn
6.1
CVE-2022-4213
Dec 2, 2022
Researcher: Muhammad Zeeshan (Xib3rR4dAr)
Chained Quiz <= 1.3.2.4 - Cross-Site Request Forgery to Submitted Response Deletion
5.4
CVE-2022-4219
Dec 2, 2022
Researcher: Muhammad Zeeshan (Xib3rR4dAr)
Chained Quiz <= 1.3.2 - Reflected Cross-Site Scripting via dnf
6.1
CVE-2022-4210
Dec 2, 2022
Researcher: Muhammad Zeeshan (Xib3rR4dAr)
Chained Quiz <= 1.3.2.2 - Authenticated (Admin+) Stored Cross-Site Scripting via Facebook App ID
5.5
CVE-2022-4216
Dec 2, 2022
Researcher: Muhammad Zeeshan (Xib3rR4dAr)
Chained Quiz <= 1.3.2 - Reflected Cross-Site Scripting via pointsf
6.1
CVE-2022-4209
Dec 2, 2022
Researcher: Muhammad Zeeshan (Xib3rR4dAr)
Chained Quiz <= 1.3.2.3 - Reflected Cross-Site Scripting via date
6.1
CVE-2022-4215
Dec 2, 2022
Researcher: Muhammad Zeeshan (Xib3rR4dAr)
Chained Quiz <= 1.3.2 - Reflected Cross-Site Scripting via ipf
6.1
CVE-2022-4212
Dec 2, 2022
Researcher: Muhammad Zeeshan (Xib3rR4dAr)
Chained Quiz <= 1.3.2.4 - Cross-Site Request Forgery to Question Deletion
5.4
CVE-2022-4220
Dec 2, 2022
Researcher: Muhammad Zeeshan (Xib3rR4dAr)
Chained Quiz <= 1.3.2.2 - Authenticated (Admin+) Stored Cross-Site Scripting via Mailchimp API Key
5.5
CVE-2022-4217
Dec 2, 2022
Researcher: Muhammad Zeeshan (Xib3rR4dAr)
Chained Quiz <= 1.3.2.3 - Reflected Cross-Site Scripting via ip
6.1
CVE-2022-4214
Dec 2, 2022
Researcher: Muhammad Zeeshan (Xib3rR4dAr)
Chained Quiz <= 1.3.2 - Reflected Cross-Site Scripting via emailf
6.1
CVE-2022-4211
Dec 2, 2022
Researcher: Muhammad Zeeshan (Xib3rR4dAr)
Chained Quiz <= 1.3.2 - Reflected Cross-Site Scripting via datef
6.1
CVE-2022-4208
Dec 2, 2022
Researcher: Muhammad Zeeshan (Xib3rR4dAr)
Chained Quiz < 1.2.7.2 - Cross-Site Scripting
5.4
CVE-2021-24690
Sep 7, 2021
Researcher: Shivam Rai
Chained Quiz <= 1.1.9 -Stored Cross-Site Scripting
6.4
CVE ID Unknown
Feb 21, 2020
Researcher: khoabda
Chained Quiz <= 1.1.8.1 - Reflected Cross-Site Scripting
6.1
CVE-2020-7104
Jan 16, 2020
Researcher: Ben Armstrong
Chained Quiz <= 1.0.8.2 - Unauthenticated SQL Injection
9.8
CVE-2018-14502
Aug 16, 2018
Researcher: Qlirim Emini
Chained Quiz Plugin < 1.0 - Cross-Site Scripting
6.1
CVE-2016-10892
Jan 12, 2017
Researchers:
Chained Quiz <= 0.9.8 - Cross-Site Scripting
6.4
CVE ID Unknown
Dec 21, 2016
Researchers:
Title CVE ID CVSS Researchers Date
Chained Quiz <= 1.3.2.5 - Authenticated (Admin+) Stored Cross-Site Scripting CVE-2023-25027 5.5 yuyudhn February 6, 2023
Chained Quiz <= 1.3.2.4 - Cross-Site Request Forgery to Arbitrary Quiz Deletion and Copying CVE-2022-4218 5.4 Muhammad Zeeshan (Xib3rR4dAr) December 2, 2022
Chained Quiz <= 1.3.2.2 - Reflected Cross-Site Scripting via dn CVE-2022-4213 6.1 Muhammad Zeeshan (Xib3rR4dAr) December 2, 2022
Chained Quiz <= 1.3.2.4 - Cross-Site Request Forgery to Submitted Response Deletion CVE-2022-4219 5.4 Muhammad Zeeshan (Xib3rR4dAr) December 2, 2022
Chained Quiz <= 1.3.2 - Reflected Cross-Site Scripting via dnf CVE-2022-4210 6.1 Muhammad Zeeshan (Xib3rR4dAr) December 2, 2022
Chained Quiz <= 1.3.2.2 - Authenticated (Admin+) Stored Cross-Site Scripting via Facebook App ID CVE-2022-4216 5.5 Muhammad Zeeshan (Xib3rR4dAr) December 2, 2022
Chained Quiz <= 1.3.2 - Reflected Cross-Site Scripting via pointsf CVE-2022-4209 6.1 Muhammad Zeeshan (Xib3rR4dAr) December 2, 2022
Chained Quiz <= 1.3.2.3 - Reflected Cross-Site Scripting via date CVE-2022-4215 6.1 Muhammad Zeeshan (Xib3rR4dAr) December 2, 2022
Chained Quiz <= 1.3.2 - Reflected Cross-Site Scripting via ipf CVE-2022-4212 6.1 Muhammad Zeeshan (Xib3rR4dAr) December 2, 2022
Chained Quiz <= 1.3.2.4 - Cross-Site Request Forgery to Question Deletion CVE-2022-4220 5.4 Muhammad Zeeshan (Xib3rR4dAr) December 2, 2022
Chained Quiz <= 1.3.2.2 - Authenticated (Admin+) Stored Cross-Site Scripting via Mailchimp API Key CVE-2022-4217 5.5 Muhammad Zeeshan (Xib3rR4dAr) December 2, 2022
Chained Quiz <= 1.3.2.3 - Reflected Cross-Site Scripting via ip CVE-2022-4214 6.1 Muhammad Zeeshan (Xib3rR4dAr) December 2, 2022
Chained Quiz <= 1.3.2 - Reflected Cross-Site Scripting via emailf CVE-2022-4211 6.1 Muhammad Zeeshan (Xib3rR4dAr) December 2, 2022
Chained Quiz <= 1.3.2 - Reflected Cross-Site Scripting via datef CVE-2022-4208 6.1 Muhammad Zeeshan (Xib3rR4dAr) December 2, 2022
Chained Quiz < 1.2.7.2 - Cross-Site Scripting CVE-2021-24690 5.4 Shivam Rai September 7, 2021
Chained Quiz <= 1.1.9 -Stored Cross-Site Scripting 6.4 khoabda February 21, 2020
Chained Quiz <= 1.1.8.1 - Reflected Cross-Site Scripting CVE-2020-7104 6.1 Ben Armstrong January 16, 2020
Chained Quiz <= 1.0.8.2 - Unauthenticated SQL Injection CVE-2018-14502 9.8 Qlirim Emini August 16, 2018
Chained Quiz Plugin < 1.0 - Cross-Site Scripting CVE-2016-10892 6.1 January 12, 2017
Chained Quiz <= 0.9.8 - Cross-Site Scripting 6.4 December 21, 2016

Did you know Wordfence Intelligence provides free personal and commercial API access to our comprehensive WordPress vulnerability database, along with a free webhook integration to stay on top of the latest vulnerabilities added and updated in the database? Get started today!

Learn more

Want to get notified of the latest vulnerabilities that may affect your WordPress site?
Install Wordfence on your site today to get notified immediately if your site is affected by a vulnerability that has been added to our database.

Get Wordfence

The Wordfence Intelligence WordPress vulnerability database is completely free to access and query via API. Please review the documentation on how to access and consume the vulnerability data via API.

Documentation