Chained Quiz

Wordfence Intelligence   >   Vulnerability Database   >   WordPress Plugins   >   Chained Quiz

Information

Software Type Plugin
Software Slug chained-quiz (view on wordpress.org)
Software Status Active
Software Author prasunsen
Software Website calendarscripts.info
Software Downloads 103,804
Software Active Installs 2,000
Software Record Last Updated May 19, 2024

20 Vulnerabilities

Chained Quiz <= 1.3.2.5 - Authenticated (Admin+) Stored Cross-Site Scripting
5.5
CVE-2023-25027
Feb 6, 2023
Researcher: yuyudhn
Chained Quiz <= 1.3.2.4 - Cross-Site Request Forgery to Arbitrary Quiz Deletion and Copying
5.4
CVE-2022-4218
Dec 2, 2022
Researcher: Muhammad Zeeshan (Xib3rR4dAr)
Chained Quiz <= 1.3.2.2 - Reflected Cross-Site Scripting via dn
6.1
CVE-2022-4213
Dec 2, 2022
Researcher: Muhammad Zeeshan (Xib3rR4dAr)
Chained Quiz <= 1.3.2.4 - Cross-Site Request Forgery to Submitted Response Deletion
5.4
CVE-2022-4219
Dec 2, 2022
Researcher: Muhammad Zeeshan (Xib3rR4dAr)
Chained Quiz <= 1.3.2 - Reflected Cross-Site Scripting via dnf
6.1
CVE-2022-4210
Dec 2, 2022
Researcher: Muhammad Zeeshan (Xib3rR4dAr)
Chained Quiz <= 1.3.2.2 - Authenticated (Admin+) Stored Cross-Site Scripting via Facebook App ID
5.5
CVE-2022-4216
Dec 2, 2022
Researcher: Muhammad Zeeshan (Xib3rR4dAr)
Chained Quiz <= 1.3.2 - Reflected Cross-Site Scripting via pointsf
6.1
CVE-2022-4209
Dec 2, 2022
Researcher: Muhammad Zeeshan (Xib3rR4dAr)
Chained Quiz <= 1.3.2.3 - Reflected Cross-Site Scripting via date
6.1
CVE-2022-4215
Dec 2, 2022
Researcher: Muhammad Zeeshan (Xib3rR4dAr)
Chained Quiz <= 1.3.2 - Reflected Cross-Site Scripting via ipf
6.1
CVE-2022-4212
Dec 2, 2022
Researcher: Muhammad Zeeshan (Xib3rR4dAr)
Chained Quiz <= 1.3.2.4 - Cross-Site Request Forgery to Question Deletion
5.4
CVE-2022-4220
Dec 2, 2022
Researcher: Muhammad Zeeshan (Xib3rR4dAr)
Chained Quiz <= 1.3.2.2 - Authenticated (Admin+) Stored Cross-Site Scripting via Mailchimp API Key
5.5
CVE-2022-4217
Dec 2, 2022
Researcher: Muhammad Zeeshan (Xib3rR4dAr)
Chained Quiz <= 1.3.2.3 - Reflected Cross-Site Scripting via ip
6.1
CVE-2022-4214
Dec 2, 2022
Researcher: Muhammad Zeeshan (Xib3rR4dAr)
Chained Quiz <= 1.3.2 - Reflected Cross-Site Scripting via emailf
6.1
CVE-2022-4211
Dec 2, 2022
Researcher: Muhammad Zeeshan (Xib3rR4dAr)
Chained Quiz <= 1.3.2 - Reflected Cross-Site Scripting via datef
6.1
CVE-2022-4208
Dec 2, 2022
Researcher: Muhammad Zeeshan (Xib3rR4dAr)
Chained Quiz < 1.2.7.2 - Cross-Site Scripting
5.4
CVE-2021-24690
Sep 7, 2021
Researcher: Shivam Rai
Chained Quiz <= 1.1.9 -Stored Cross-Site Scripting
6.4
CVE ID Unknown
Feb 21, 2020
Researcher: khoabda
Chained Quiz <= 1.1.8.1 - Reflected Cross-Site Scripting
6.1
CVE-2020-7104
Jan 16, 2020
Researcher: Ben Armstrong
Chained Quiz <= 1.0.8.2 - Unauthenticated SQL Injection
9.8
CVE-2018-14502
Aug 16, 2018
Researcher: Qlirim Emini
Chained Quiz Plugin < 1.0 - Cross-Site Scripting
6.1
CVE-2016-10892
Jan 12, 2017
Researchers:
Chained Quiz <= 0.9.8 - Cross-Site Scripting
6.4
CVE ID Unknown
Dec 21, 2016
Researchers:
Title Status CVE ID CVSS Researchers Date
Chained Quiz <= 1.3.2.5 - Authenticated (Admin+) Stored Cross-Site Scripting Patched CVE-2023-25027 5.5 yuyudhn February 6, 2023
Chained Quiz <= 1.3.2.4 - Cross-Site Request Forgery to Arbitrary Quiz Deletion and Copying Patched CVE-2022-4218 5.4 Muhammad Zeeshan (Xib3rR4dAr) December 2, 2022
Chained Quiz <= 1.3.2.2 - Reflected Cross-Site Scripting via dn Patched CVE-2022-4213 6.1 Muhammad Zeeshan (Xib3rR4dAr) December 2, 2022
Chained Quiz <= 1.3.2.4 - Cross-Site Request Forgery to Submitted Response Deletion Patched CVE-2022-4219 5.4 Muhammad Zeeshan (Xib3rR4dAr) December 2, 2022
Chained Quiz <= 1.3.2 - Reflected Cross-Site Scripting via dnf Patched CVE-2022-4210 6.1 Muhammad Zeeshan (Xib3rR4dAr) December 2, 2022
Chained Quiz <= 1.3.2.2 - Authenticated (Admin+) Stored Cross-Site Scripting via Facebook App ID Patched CVE-2022-4216 5.5 Muhammad Zeeshan (Xib3rR4dAr) December 2, 2022
Chained Quiz <= 1.3.2 - Reflected Cross-Site Scripting via pointsf Patched CVE-2022-4209 6.1 Muhammad Zeeshan (Xib3rR4dAr) December 2, 2022
Chained Quiz <= 1.3.2.3 - Reflected Cross-Site Scripting via date Patched CVE-2022-4215 6.1 Muhammad Zeeshan (Xib3rR4dAr) December 2, 2022
Chained Quiz <= 1.3.2 - Reflected Cross-Site Scripting via ipf Patched CVE-2022-4212 6.1 Muhammad Zeeshan (Xib3rR4dAr) December 2, 2022
Chained Quiz <= 1.3.2.4 - Cross-Site Request Forgery to Question Deletion Patched CVE-2022-4220 5.4 Muhammad Zeeshan (Xib3rR4dAr) December 2, 2022
Chained Quiz <= 1.3.2.2 - Authenticated (Admin+) Stored Cross-Site Scripting via Mailchimp API Key Patched CVE-2022-4217 5.5 Muhammad Zeeshan (Xib3rR4dAr) December 2, 2022
Chained Quiz <= 1.3.2.3 - Reflected Cross-Site Scripting via ip Patched CVE-2022-4214 6.1 Muhammad Zeeshan (Xib3rR4dAr) December 2, 2022
Chained Quiz <= 1.3.2 - Reflected Cross-Site Scripting via emailf Patched CVE-2022-4211 6.1 Muhammad Zeeshan (Xib3rR4dAr) December 2, 2022
Chained Quiz <= 1.3.2 - Reflected Cross-Site Scripting via datef Patched CVE-2022-4208 6.1 Muhammad Zeeshan (Xib3rR4dAr) December 2, 2022
Chained Quiz < 1.2.7.2 - Cross-Site Scripting Patched CVE-2021-24690 5.4 Shivam Rai September 7, 2021
Chained Quiz <= 1.1.9 -Stored Cross-Site Scripting Patched 6.4 khoabda February 21, 2020
Chained Quiz <= 1.1.8.1 - Reflected Cross-Site Scripting Patched CVE-2020-7104 6.1 Ben Armstrong January 16, 2020
Chained Quiz <= 1.0.8.2 - Unauthenticated SQL Injection Patched CVE-2018-14502 9.8 Qlirim Emini August 16, 2018
Chained Quiz Plugin < 1.0 - Cross-Site Scripting Patched CVE-2016-10892 6.1 January 12, 2017
Chained Quiz <= 0.9.8 - Cross-Site Scripting Patched 6.4 December 21, 2016

Did you know Wordfence Intelligence provides free personal and commercial API access to our comprehensive WordPress vulnerability database, along with a free webhook integration to stay on top of the latest vulnerabilities added and updated in the database? Get started today!

Learn more

Want to get notified of the latest vulnerabilities that may affect your WordPress site?
Install Wordfence on your site today to get notified immediately if your site is affected by a vulnerability that has been added to our database.

Get Wordfence

The Wordfence Intelligence WordPress vulnerability database is completely free to access and query via API. Please review the documentation on how to access and consume the vulnerability data via API.

Documentation