Vulnerability Details CVE-2022-47407
An issue was discovered in the fp_masterquiz (aka Master-Quiz) extension before 2.2.1, and 3.x before 3.5.1, for TYPO3. An attacker can continue the quiz of a different user. In doing so, the attacker can view that user's answers and modify those answers.
Exploit prediction scoring system (EPSS) score
EPSS Score 0.002
EPSS Ranking 40.3%
CVSS Severity
CVSS v3 Score 6.5
References
Products affected by CVE-2022-47407
-
cpe:2.3:a:master-quiz_project:master-quiz:0.2.0
-
cpe:2.3:a:master-quiz_project:master-quiz:0.3.0
-
cpe:2.3:a:master-quiz_project:master-quiz:0.4.0
-
cpe:2.3:a:master-quiz_project:master-quiz:0.5.0
-
cpe:2.3:a:master-quiz_project:master-quiz:0.6.0
-
cpe:2.3:a:master-quiz_project:master-quiz:0.7.0
-
cpe:2.3:a:master-quiz_project:master-quiz:1.0.0
-
cpe:2.3:a:master-quiz_project:master-quiz:1.1.0
-
cpe:2.3:a:master-quiz_project:master-quiz:1.2.0
-
cpe:2.3:a:master-quiz_project:master-quiz:1.3.0
-
cpe:2.3:a:master-quiz_project:master-quiz:1.4.0
-
cpe:2.3:a:master-quiz_project:master-quiz:1.5.0
-
cpe:2.3:a:master-quiz_project:master-quiz:2.0.0
-
cpe:2.3:a:master-quiz_project:master-quiz:2.1.0
-
cpe:2.3:a:master-quiz_project:master-quiz:2.2.0
-
cpe:2.3:a:master-quiz_project:master-quiz:3.0.0
-
cpe:2.3:a:master-quiz_project:master-quiz:3.1.1
-
cpe:2.3:a:master-quiz_project:master-quiz:3.1.2
-
cpe:2.3:a:master-quiz_project:master-quiz:3.2.0
-
cpe:2.3:a:master-quiz_project:master-quiz:3.4.0
-
cpe:2.3:a:master-quiz_project:master-quiz:3.4.4