CVE-2023-6155 | Quiz Maker Plugin prior 6.4.9.5 on WordPress AJAX Action ays_quiz_author_user_search improper authorization

Posted by Angelo Barbosa | Dec 26, 2023 | CVE

A vulnerability classified as critical has been found in Quiz Maker Plugin on WordPress. This affects the function ays_quiz_author_user_search of the component AJAX Action Handler. The manipulation leads to improper authorization.

This vulnerability is uniquely identified as CVE-2023-6155. It is possible to initiate the attack remotely. There is no exploit available.

It is recommended to upgrade the affected component.

CVE-2023-6155 | Quiz Maker Plugin prior 6.4.9.5 on WordPress AJAX Action ays_quiz_author_user_search improper authorization

Related Posts

CVE-2024-26607 | Linux Kernel up to 6.1.75/6.6.14/6.7.2/6.8-rc1 DRM sii902x_init null pointer dereference

CVE-2023-4001 | Grub2 Password Protection improper authentication

CVE-2023-6899 | rmountjoy92 DashMachine 0.5-4 Config /settings/save_config value_template code injection

CVE-2023-38362 | IBM CICS TX Advanced 10.1 HTTP Response observable response discrepancy (XFDB-260814)