← volver
CVE-2021-20792

CVE-2021-20792

EPSS 3.5%
Vexday Risk Score
18Bajo
Decisión SSVC (CISA)
Attend
PoC disponible → seguir de cerca
CVSS EPSS 3.5%KEV nãoPoC Nuclei simMetasploit Patch
Ciclo de vida
18 ago 2021Publicada en NVD
Recomendación: Planificar corrección próxima — ya existe PoC pública.
Cross-site scripting vulnerability in Quiz And Survey Master versions prior to 7.1.14 allows a remote attacker to inject arbitrary script via unspecified vectors.
Productos afectados
ExpressTech · Quiz And Survey Master

¿Quieres saber si tu infraestructura está expuesta a esto?

Hablar con TrueHacking →
Referencias
https://jvn.jp/en/jp/JVN65388002/index.htmlhttps://plugins.trac.wordpress.org/changeset?new=2503364%40quiz-master-next%2Ftrunk%2Fphp%2Fadmin%2Fquizzes-page.php&old=2490516%40quiz-master-next%2Ftrunk%2Fphp%2Fadmin%2Fquizzes-page.phphttps://quizandsurveymaster.com/https://wordpress.org/plugins/quiz-master-next/