Quiz and Survey Master (QSM) – Easy Quiz and Survey Maker

Quiz and Survey Master (QSM) – Easy Quiz and Survey Maker <= 11.0.0 - Unauthenticated Stored Cross-Site Scripting

CVE-2026-5797

Quiz and Survey Master (QSM) <= 10.3.1 - Missing Authorization to Unpublished, Private And Password-Protected Quiz Information Disclosure And Image Response Uploads

Quiz and Survey Master (QSM) <= 10.3.1 - Authenticated (Subscriber+) SQL Injection via `is_linking` Query Parameter

Quiz And Survey Master <= 10.3.1 - Missing Authorization to Authenticated (Subscriber+) Quiz Results Deletion

Quiz and Survey Master (QSM) <= 10.3.5 - Authenticated (Contributor+) SQL Injection via 'merged_question' Parameter

CVE-2025-67987

CVE-2026-25329

CVE-2026-25324

CVE-2026-24358

CVE-2025-63054

CVE-2025-49401

Quiz and Survey Master (QSM) <= 10.2.2 - Cross-Site Request Forgery to Template Creation

CVE-2025-55708

CVE-2024-10679

CVE-2024-8758

CVE-2024-6879

WordPress Quiz And Survey Master Plugin < 9.1.0 is vulnerable to Cross Site Scripting (XSS)

CVE-2024-5606

CVE-2024-4934

Quiz And Survey Master &lt; 8.1.19 - Multiple Cross-Site Request Forgery

CVE-2024-6025

CVE-2024-3592

CVE-2024-27966

Quiz And Survey Master &lt; 8.1.16 - Cross-Site Request Forgery via &#039;display_results&#039;

WordPress Quiz And Survey Master Plugin <= 8.1.16 is vulnerable to Broken Access Control

WordPress Quiz And Survey Master Plugin <= 8.1.18 is vulnerable to Cross Site Request Forgery (CSRF)

CVE-2023-47834

Quiz And Survey Master <= 8.1.18 - Multiple Cross-Site Request Forgery

WordPress Quiz And Survey Master Plugin < 8.1.15 is vulnerable to Cross Site Request Forgery (CSRF)

Quiz And Survey Master <= 8.1.15 - Cross-Site Request Forgery via 'display_results'

Quiz And Survey Master &lt; 4.4.4 - Authenticated Blind SQL Injection

Quiz And Survey Master &lt; 7.0.0 - Authenticated Stored Cross-Site Scripting (XSS)

Quiz and Survey Master &lt; 7.0.2 - Unauthenticated Arbitrary File Upload

Quiz And Survey Master &lt; 7.1.14 - Authenticated SQL injection via Rest API

Quiz And Survey Master &lt; 7.1.19 - Unauthenticated Stored Cross-Site Scripting (XSS)

CVE-2023-3575

CVE-2023-37984

CVE-2023-28787

CVE-2023-26524

Quiz And Survey Master <= 8.0.10 - Cross-Site Request Forgery to Quiz Restoration

CVE-2023-0291

CVE-2023-0292

CVE-2022-46862

Quiz And Survey Master < 4.4.4 - Multiple SQL Injections

Quiz and Survey Master <= 6.4.12 - Stored Cross-Site Scripting

Quiz and Survey Master <= 7.0.1 - Arbitrary File Upload

Quiz And Survey Master <= 7.1.18 - Cross-Site Scripting

Quiz and Survey Master <= 7.1.13 - SQL Injection

Quiz And Survey Master <= 8.0.7 - Cross-Site Request Forgery

Quiz And Survey Master <= 7.3.10 - Cross-Site Request Forgery

WordPress Quiz And Survey Master Plugin <= 8.0.4 is vulnerable to Other Vulnerability Type

WordPress Quiz And Survey Master Plugin <= 8.0.4 is vulnerable to Other Vulnerability Type

CVE-2022-4033

CVE-2022-4032

CVE-2021-36905

CVE-2021-36898

CVE-2021-36863

CVE-2021-36864

CVE-2022-40698

CVE-2021-36906

CVE-2022-42883

CVE-2022-41652

CVE-2021-36865

WordPress Quiz And Survey Master Plugin <= 4.4.2 - Blind SQL Injection

WordPress Quiz And Survey Master Plugin <= 4.7.8 - Multiple Vulnerabilities

WordPress Quiz And Survey Master plugin <= 7.0.1 - Unauthenticated Arbitrary File Upload vulnerability

WordPress Quiz And Survey Master plugin <= 7.1.13 - Authenticated SQL injection (SQLi) vulnerability

WordPress Quiz And Survey Master plugin <= 7.1.18 - Unauthenticated Stored Cross-Site Scripting (XSS) vulnerability

WordPress Quiz And Survey Master plugin <= 6.2.1 - Authenticated Cross-Site Scripting (XSS) vulnerability

WordPress Quiz And Survey Master plugin <= 6.3.4 - Authenticated Reflected Cross-Site Scripting (XSS) vulnerability

CVE-2016-11085

CVE-2020-35951

CVE-2020-35949

CVE-2021-24221

CVE-2021-24368

Quiz and Survey Master <= 7.1.13 - Cross-Site Scripting

CVE-2021-24691

CVE-2022-0182

CVE-2022-0181

CVE-2022-0180