Medium severity6.1NVD Advisory· Published Dec 26, 2023· Updated Jun 17, 2026
CVE-2023-6166
CVE-2023-6166
Description
The Quiz Maker WordPress plugin before 6.4.9.5 does not escape generated URLs before outputting them in attributes, leading to Reflected Cross-Site Scripting
AI Insight
LLM-synthesized narrative grounded in this CVE's description and references.
Affected products
2- WordPress/Quiz Maker WordPress plugindescription
Patches
Vulnerability mechanics
References
1- wpscan.com/vulnerability/e6155d9b-f6bb-4607-ad64-1976a8afe907nvdExploitThird Party Advisory
News mentions
0No linked articles in our index yet.