Critical Flaws in WordPress Quiz Plugin Allow Site Takeover – Threatpost

The recently patched flaws could be abused by an unauthenticated, remote attackers to take over vulnerable websites.

A plugin that is designed to add quizzes and surveys to WordPress websites has patched two critical vulnerabilities. The flaws can be exploited by remote, unauthenticated attackers to launch varying attacks – including fully taking over vulnerable websites.

The plugin, Quiz and Survey Master, is actively installed on over 30,000 websites. The two critical flaws discovered by researchers include an arbitrary file-upload vulnerability, ranking 10 out of 10 on the CVSS scale;…

More Info


Check Also

Best alternatives to WordPress in 2021

The thought of coming up with a website, for a beginner at least, can sound …

Leave a Reply

Your email address will not be published. Required fields are marked *