Description
WordPress Plugin Quiz and Survey Master (QSM)-Easy Quiz and Survey Maker is prone to a cross-site request forgery vulnerability. Exploiting this issue may allow a remote attacker to perform certain administrative actions and gain unauthorized access to the affected application; other attacks are also possible. WordPress Plugin Quiz and Survey Master (QSM)-Easy Quiz and Survey Maker version 8.0.7 is vulnerable; prior versions may also be affected.
Remediation
Update to plugin version 8.0.8 or latest
References
Related Vulnerabilities
phpList Improper Neutralization of Formula Elements in a CSV File Vulnerability (CVE-2021-3188)
Craft CMS Weak Password Recovery Mechanism for Forgotten Password Vulnerability (CVE-2017-8385)
Plone CMS CVE-2017-1000483 Vulnerability (CVE-2017-1000483)
WordPress Plugin Smart Google Code Inserter Multiple Vulnerabilities (3.4)
WordPress 2.0.3 Multiple Unspecified Security Vulnerabilities (2.0 - 2.0.3)