← Back to CVE List
CVE-2023-6166
Published:
2023-12-26T19:15Z
Last Modified:
2024-11-21T08:43Z
Source:
MITRE CVE List
License:
MITRE-CVE-TOS
The Quiz Maker WordPress plugin before 6.4.9.5 does not escape generated URLs before outputting them in attributes, leading to Reflected Cross-Site Scripting > MITRE Terms of Use apply – see LICENSE‑MITRE.txt