Quiz Module Project: Security Vulnerabilities
The Quiz module 6.x-4.x before 6.x-4.5 for Drupal allows remote authenticated users with the "view any quiz results" or "view results for own quiz" permission to delete arbitrary results via the delete option.
CVSS Score
4.9
EPSS Score
0.004
Published
2014-05-13
The default views in the Quiz module 6.x-4.x before 6.x-4.5 for Drupal allows remote attackers to obtain sensitive quiz results via unspecified vectors.
CVSS Score
5.0
EPSS Score
0.003
Published
2014-05-13