CVEs-PoC/2014/CVE-2014-100023.md at 8e2ebbf9bd04edab52d0cbcbc6c2f6e2cfdaa67d

mirror of https://github.com/0xMarcio/cve.git synced 2026-03-22 07:23:30 +00:00

Files

0xMarcio 48a00929ac Removed duplicates

2024-06-18 02:51:15 +02:00

Description

Multiple cross-site scripting (XSS) vulnerabilities in question.php in the mTouch Quiz before 3.0.7 for WordPress allow remote attackers to inject arbitrary web script or HTML via the quiz parameter to wp-admin/edit.php.

POC

Reference

https://security.dxw.com/advisories/admin-xss-and-sqli-in-mtouch-quiz-3-0-6/

Github

No PoCs found on GitHub currently.

721 B Raw Blame History

CVE-2014-100023

Description

POC

Reference

Github

721 B

Raw Blame History