CVE-2023-6155 | Quiz Maker Plugin prior 6.4.9.5 on WordPress AJAX Action ays_quiz_author_user_search improper authorization

Inserito da Angelo Barbosa | Dic 26, 2023 | CVE

A vulnerability classified as critical has been found in Quiz Maker Plugin on WordPress. This affects the function ays_quiz_author_user_search of the component AJAX Action Handler. The manipulation leads to improper authorization.

This vulnerability is uniquely identified as CVE-2023-6155. It is possible to initiate the attack remotely. There is no exploit available.

It is recommended to upgrade the affected component.

CVE-2023-6155 | Quiz Maker Plugin prior 6.4.9.5 on WordPress AJAX Action ays_quiz_author_user_search improper authorization

Post correlati

CVE-2023-32193 | Rancher Normal API cross site scripting

CVE-2024-44730 | MiroTalk Chat Message handleDataChannelChat access control (c21d58)

CVE-2024-28219 | python-pillow up to 10.2.x _imagingcms.c buffer overflow

CVE-2024-28050 | Intel Arc/Iris 31.0.101.4255 access control (intel-sa-01130)