exploitDog

CVE-2021-36906

Опубликовано: 03 нояб. 2022

Источник: nvd

CVSS3: 2.7

CVSS3: 8.8

EPSS Низкий

Описание

Multiple Insecure Direct Object References (IDOR) vulnerabilities in ExpressTech Quiz And Survey Master plugin <= 7.3.6 on WordPress.

Ссылки

https://patchstack.com/database/vulnerability/quiz-master-next/wordpress-quiz-and-survey-master-plugin-7-3-6-multiple-insecure-direct-object-references-idor-vulnerabilities?_s_id=cve
Third Party Advisory
https://wordpress.org/plugins/quiz-master-next/#developers
Product
Release Notes
Third Party Advisory
https://patchstack.com/database/vulnerability/quiz-master-next/wordpress-quiz-and-survey-master-plugin-7-3-6-multiple-insecure-direct-object-references-idor-vulnerabilities?_s_id=cve
Third Party Advisory
https://wordpress.org/plugins/quiz-master-next/#developers
Product
Release Notes
Third Party Advisory

Уязвимые конфигурации

Конфигурация 1

cpe:2.3:a:expresstech:quiz_and_survey_master:*:*:*:*:*:wordpress:*:*

Версия до 7.3.6 (включая)

EPSS

Процентиль: 56%

0.00334

Низкий

2.7 Low

CVSS3

8.8 High

CVSS3

Дефекты

CWE-639

CWE-639

Связанные уязвимости

GHSA-9cgg-xr6f-vrg8

CVSS3: 8.8

github

больше 3 лет назад

Multiple Insecure Direct Object References (IDOR) vulnerabilities in ExpressTech Quiz And Survey Master plugin <= 7.3.6 on WordPress.

EPSS

Процентиль: 56%

0.00334

Низкий

2.7 Low

CVSS3

8.8 High

CVSS3

Дефекты

CWE-639

CWE-639