Authenticated Cross-Site Scripting (XSS) vulnerability found by Tim Coen in WordPress Quiz And Survey Master plugin (versions <= 6.2.1).
12 March 2019 - plugin disabled in WordPress plugin repository, but changelog available for the patched version 6.2.2