CVE-2022-42883

2022-11-1823:15:28

Google

osv.dev

vulnerability

sensitive information

quiz and survey master

wordpress

software

7.5 High

CVSS3

Attack Vector

NETWORK

Attack Complexity

LOW

Privileges Required

NONE

User Interaction

NONE

Scope

UNCHANGED

Confidentiality Impact

HIGH

Integrity Impact

NONE

Availability Impact

NONE

CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:N/A:N

6.7 Medium

AI Score

Confidence

High

0.002 Low

EPSS

Percentile

51.5%

JSON

Sensitive Information Disclosure vulnerability discovered by Quiz And Survey Master plugin <= 7.3.10 on WordPress.

CPENameOperatorVersion
quiz_master_nexteq5.1.6
quiz_master_nexteq5.0.0
quiz_master_nexteq6.3.5
quiz_master_nexteq4.4.1
quiz_master_nexteq4.2.4
quiz_master_nexteq5.0.2
quiz_master_nexteq4.6.5
quiz_master_nexteq4.3.0
quiz_master_nexteq5.1.2
quiz_master_nexteq5.2.0

Name	Operator	Version
quiz_master_next	eq	5.1.6
quiz_master_next	eq	5.0.0
quiz_master_next	eq	6.3.5
quiz_master_next	eq	4.4.1
quiz_master_next	eq	4.2.4
quiz_master_next	eq	5.0.2
quiz_master_next	eq	4.6.5
quiz_master_next	eq	4.3.0
quiz_master_next	eq	5.1.2
quiz_master_next	eq	5.2.0

Rows per page:

1-10 of 1021

References

patchstack.com/database/vulnerability/quiz-master-next/wordpress-quiz-and-survey-master-plugin-7-3-10-sensitive-information-disclosure-vulnerability?_s_id=cve