-
Notifications
You must be signed in to change notification settings - Fork 87
New issue
Have a question about this project? Sign up for a free GitHub account to open an issue and contact its maintainers and the community.
By clicking “Sign up for GitHub”, you agree to our terms of service and privacy statement. We’ll occasionally send you account related emails.
Already on GitHub? Sign in to your account
report reflected xss vulnerability #795
Comments
Thanks for finding a security flaw in our plugin and notifying us. Please give us an opportunity to fix it before you send a notification to WordPress. |
Our team member has solved this issue using #796. Please verify this on the |
what is changed? I can't understand. It looks like still be vulnerable. just add "space". |
Solved XSS Vulnerability #795
good! |
IF YOU DO NOT FOLLOW THIS TEMPLATE, YOUR ISSUE MAY BE CLOSED!!
Please provide the following information when creating your issues:
Site Info
WordPress Version: Latest
QSM Version: 6.3.3 and 6.3.4
Browser: chrome 78.0.3904.87
General description
Quiz And Survey Master – Best Quiz Plugin for WordPress for WordPress is affected by: Cross Site Scripting (XSS). The impact is: Allows an attacker to execute arbitrary HTML and JavaScript code via the from or till parameter. The component is: /quiz-master-next/php/admin/quiz-options-page.php:162. The attack vector is: When the Administrator is logged in, a reflected XSS may execute upon a click on a malicious URL.
special conditions must be met in order to exploit this vulnerability:
The wordpress security feature wp_magic_quotes(), which is enabled by default, has to be disabled.
Vulnerable code : /quiz-master-next/php/admin/quiz-options-page.php:162
$_GET['quiz_id'] <= need to prevent escape.
Expected behavior
nothing.
Actual behavior
reflected XSS, victim may click the malicious url. (Administrator must be logged in.)
Steps to reproduce the behavior
The text was updated successfully, but these errors were encountered: