Back to CVE Browser

CVE-2021-36898

HIGH

7.5

CVSS Severity Score

EPSS Score0.1440%

EPSS Percentile24.15th

PublishedOct 28, 2022

Last ModifiedApr 28, 2026

Vulnerability Description

Auth. SQL Injection (SQLi) vulnerability in Quiz And Survey Master plugin <= 7.3.4 on WordPress.

Affected Platforms (CPE)

📦

Expresstech

Quiz And Survey Master

<= 7.3.4

References & Advisories

🔗 https://patchstack.com/database/vulnerability/quiz-master-next/wordpress-quiz-and-survey-master-plugin-7-3-4-auth-sql-injection-sqli-vulnerability?_s_id=cve

🔗 https://wordpress.org/plugins/quiz-master-next/#developers

🔗 https://patchstack.com/database/vulnerability/quiz-master-next/wordpress-quiz-and-survey-master-plugin-7-3-4-auth-sql-injection-sqli-vulnerability?_s_id=cve

🔗 https://wordpress.org/plugins/quiz-master-next/#developers

Related Vulnerabilities

CVE-2020-3594910.0

An issue was discovered in the Quiz and Survey Master plugin before 7.0.1 for WordPress. It made it possible for unauthenticated a...

CVE-2020-359519.9

An issue was discovered in the Quiz and Survey Master plugin before 7.0.1 for WordPress. It allows users to delete arbitrary files...

CVE-2021-242218.8

The Quiz And Survey Master – Best Quiz, Exam and Survey Plugin for WordPress plugin before 7.1.12 did not sanitise the result_id G...

CVE-2019-175996.1

The quiz-master-next (aka Quiz And Survey Master) plugin before 6.3.5 for WordPress is affected by: Cross Site Scripting (XSS). Th...