Medium severity4.7NVD Advisory· Published Aug 26, 2024· Updated Jun 17, 2026
CVE-2024-6879
CVE-2024-6879
Description
The Quiz and Survey Master (QSM) WordPress plugin before 9.1.1 fails to validate and escape certain Quiz fields before displaying them on a page or post where the Quiz is embedded, which could allows contributor and above roles to perform Stored Cross-Site Scripting (XSS) attacks.
AI Insight
LLM-synthesized narrative grounded in this CVE's description and references.
Affected products
2<9.1.1+ 1 more
- (no CPE)range: <9.1.1
- (no CPE)
Patches
Vulnerability mechanics
References
1- wpscan.com/vulnerability/4da0b318-03e7-409d-9b02-f108e4232c87/nvdExploitThird Party Advisory
News mentions
0No linked articles in our index yet.