PT-2026-25189 · Ays Pro · Quiz Maker

W41Bu1

·

Publicado

2026-03-13

·

Atualizado

2026-03-15

·

CVE-2026-32342

CVSS v3.1

4.3

Média

VetorAV:N/AC:L/PR:N/UI:R/S:U/C:N/I:L/A:N
Name of the Vulnerable Software and Affected Versions Ays Pro Quiz Maker versions through 6.7.1.2
Description A Cross-Site Request Forgery (CSRF) issue exists in Ays Pro Quiz Maker quiz-maker, allowing attackers to perform actions on behalf of authenticated users. This occurs because the application does not adequately protect against forged requests.
Recommendations Versions prior to 6.7.1.2 are affected.

Correção

CSRF

Encontrou algum problema na descrição? Tem algo a acrescentar? Fique à vontade para nos escrever 👾
dbugs@ptsecurity.com

Enumeração de Fraquezas

CWE-352

Identificadores relacionados

CVE-2026-32342

Produtos afetados

Quiz Maker