XSS in Assaf Parag Poll, Survey & Quiz Maker Plugin By Opinion Stage
CVE-2019-25297
Poll, Survey & Quiz Maker Plugin by Opinion Stage Wordpress plugin versions prior to 19.6.25 contain a stored cross-site scripting (XSS) vulnerability via multiple parameters due to insufficient input validation and output escaping. An una…
Vulnerability class: XSS (Cross-Site Scripting)
EPSS: 0.005 (36.3th percentile) — read the EPSS interpretation.
Affected products
Weakness classification (CWE)
References
- disclosure@vulncheck.com (patch, third-party-advisory)
- disclosure@vulncheck.com (exploit, patch)
- disclosure@vulncheck.com (product)
- disclosure@vulncheck.com (third-party-advisory)
- disclosure@vulncheck.com (patch)
- disclosure@vulncheck.com (technical-description, exploit)
- disclosure@vulncheck.com (third-party-advisory)