Goal Reached Thanks to every supporter — we hit 100%!

Goal: 1000 CNY · Raised: 1000 CNY

100.0%
Buy Us a Coffee

Quiz and Survey Master (QSM) – Easy Quiz and Survey Maker — Vulnerabilities & Security Advisories 10

All 10 CVE vulnerabilities found in Quiz and Survey Master (QSM) – Easy Quiz and Survey Maker, with AI-generated Chinese analysis, references, and POCs.

Vendor: expresstech

CVE IDTitleCVSSSeverityPublished
CVE-2026-5797 Quiz and Survey Master (QSM) <= 11.1.0 - Unauthenticated Shortcode Injection Leading to Arbitrary Quiz Result Disclosure via Quiz Answer Text Input Fields CWE-74 5.3 Medium2026-04-17
CVE-2026-2412 Quiz and Survey Master (QSM) <= 10.3.5 - Authenticated (Contributor+) SQL Injection via 'merged_question' Parameter CWE-89 6.5 Medium2026-03-23
CVE-2025-9637 Quiz and Survey Master (QSM) <= 10.3.1 - Missing Authorization to Unpublished, Private And Password-Protected Quiz Information Disclosure And Image Response Uploads CWE-862 6.5 Medium2026-01-06
CVE-2025-9318 Quiz and Survey Master (QSM) <= 10.3.1 - Authenticated (Subscriber+) SQL Injection via `is_linking` Query Parameter CWE-89 6.5 Medium2026-01-06
CVE-2025-9294 Quiz And Survey Master <= 10.3.1 - Missing Authorization to Authenticated (Subscriber+) Quiz Results Deletion CWE-285 4.3 Medium2026-01-06
CVE-2024-3592 Quiz And Survey Master – Best Quiz, Exam and Survey Plugin for WordPress <= 9.0.1 - Authenticated (Contributor+) SQL Injection CWE-89 9.9 Critical2024-06-07
CVE-2023-0292 Quiz And Survey Master <= 8.0.8 - Cross-Site Request Forgery to Arbitrary Media Deletion CWE-352 5.4 Medium2023-06-09
CVE-2023-0291 Quiz And Survey Master <= 8.0.8 - Unauthenticated Arbitrary Media Deletion CWE-862 7.2 High2023-06-09
CVE-2022-4033 Quiz and Survey Master <= 8.0.4 - Improper Input Validation CWE-20 5.3 Medium2022-11-29
CVE-2022-4032 Quiz and Survey Master <= 8.0.4 - Unauthenticated iFrame Injection via Paragraph and Short Answer CWE-20 7.2 High2022-11-29

All 10 known CVE vulnerabilities affecting Quiz and Survey Master (QSM) – Easy Quiz and Survey Maker with full Chinese analysis, references, and POCs where available.