First published: Fri Apr 07 2023(Updated: )
Auth. (admin+) Stored Cross-Site Scripting (XSS) vulnerability in Kiboko Labs Watu Quiz plugin <= 3.3.8 versions.
Credit: audit@patchstack.com
Affected Software | Affected Version | How to fix |
---|---|---|
Kibokolabs Watu Quiz | <=3.3.8 |
Update to 3.3.8.1 or a higher version.
Sign up to SecAlerts for real-time vulnerability data matched to your software, aggregated from hundreds of sources.
CVE-2023-25022 is a stored Cross-Site Scripting (XSS) vulnerability in the Kiboko Labs Watu Quiz plugin version 3.3.8 and earlier.
The severity of CVE-2023-25022 is medium with a CVSS score of 4.8.
Users of Kiboko Labs Watu Quiz plugin version 3.3.8 and earlier are affected by CVE-2023-25022.
To fix CVE-2023-25022, you should update to a version of the Kiboko Labs Watu Quiz plugin that is newer than 3.3.8.
You can find more information about CVE-2023-25022 at the following link: [https://patchstack.com/database/vulnerability/watu/wordpress-watu-quiz-plugin-3-3-8-cross-site-scripting-xss?_s_id=cve](https://patchstack.com/database/vulnerability/watu/wordpress-watu-quiz-plugin-3-3-8-cross-site-scripting-xss?_s_id=cve)