Vulnerabilities

CVE-2025-6790

by Fred · 14/08/2025

The Quiz and Survey Master (QSM) WordPress plugin before 10.2.3 does not have CSRF check in place when updating its settings, which could allow attackers to make a logged in admin change them via a CSRF attack.

More information : https://wpscan.com/vulnerability/af337f9f-c955-49eb-9675-2f85da96fcfe/

Similar

Tags: Cybersecurity Alert