CVE-2021-24571

CVE-2021-24571: HD Quiz < 1.8.4 - Authenticated Stored XSS

Vendor Unknown
Product HD Quiz
Weakness CWE-79 · XSS
Published August 23, 2021
Last update August 3, 2024

CVSS base score

What the vulnerability does

01Description

The HD Quiz WordPress plugin before 1.8.4 does not escape some of its Answers before outputting them in attribute when generating the Quiz, which could lead to Stored Cross-Site Scripting issues

Key dates

02Disclosure timeline

August 23, 2021 CVE published
August 3, 2024 Record updated