Get a demo
100% Signal 0% Noise Invicti Logo - The Largest Dynamic Application Security Solutions Provider In The World Get a demo
WordPress Plugin SlickQuiz Multiple Vulnerabilities - CVE-2019-12517 - Vulnerability Database
WP Plugin Slickquiz

WordPress Plugin SlickQuiz Multiple Vulnerabilities - CVE-2019-12517

High
Reference: CVE-2019-12517
NVD Link: https://nvd.nist.gov/vuln/detail/CVE-2019-12517
Title: WordPress Plugin SlickQuiz Multiple Vulnerabilities
Overview:

WordPress Plugin SlickQuiz is prone to multiple vulnerabilities including cross-site scripting and SQL injection vulnerabilities. Exploiting these issues could allow an attacker to execute arbitrary script code in the browser of an unsuspecting user in the context of the affected site allowing the attacker to steal cookie-based authentication credentials or to compromise the application access or modify data or exploit latent vulnerabilities in the underlying database. WordPress Plugin SlickQuiz version 1.3.7.1 is vulnerable prior versions may also be affected.