WordPress is the Wordpress Foundation’s set of blogging platforms developed using the PHP language. The Quiz Maker plugin is an application plugin for WordPress. SQL injection vulnerability exists in versions of the WordPress Quiz Maker plugin prior to 6.2.0.9, which stems from the plugin’s failure to properly validate and escape the order and orderby parameters in SQL statements are not properly validated and escaped, an attacker can use this vulnerability to cause a SQL injection issue in the admin dashboard.