PT-2023-19877 · Kiboko · Kiboko Labs Chained Quiz Plugin

Yuyudhn

·

Published

2023-04-07

·

Updated

2023-04-15

·

CVE-2023-25027

CVSS v3.1

5.9

Medium

VectorAV:N/AC:L/PR:H/UI:R/S:C/C:L/I:L/A:L
Name of the Vulnerable Software and Affected Versions Kiboko Labs Chained Quiz plugin versions prior to 1.3.2.6
Description The issue is related to a Stored Cross-Site Scripting (XSS) vulnerability that requires authentication with admin+ privileges.
Recommendations For versions prior to 1.3.2.6, update to a version that contains a fix for this issue.

Fix

XSS

Weakness Enumeration

CWE-79

Related Identifiers

CVE-2023-25027

Affected Products

Kiboko Labs Chained Quiz Plugin