CVEDB API

Vulnerabilities

By Date
Known Exploited
Advanced Search

Vulnerable Software

Vendors
Products

Kibokolabs: >> Watu Quiz >> 3.4.1.1 Security Vulnerabilities

CVE-2025-46242

Improper Neutralization of Special Elements used in an SQL Command ('SQL Injection') vulnerability in Bob Watu Quiz allows SQL Injection. This issue affects Watu Quiz: from n/a through 3.4.3.

CVSS Score

7.6

EPSS Score

0.0

Published

2025-04-22

CVE-2024-2640

The Watu Quiz WordPress plugin before 3.4.1.2 does not sanitise and escape some of its settings, which could allow users such as authors (if they've been authorized by admins) to perform Stored Cross-Site Scripting attacks even when the unfiltered_html capability is disallowed.

CVSS Score

5.4

EPSS Score

0.002

Published

2024-07-12

Page 1

Vulnerabilities

Vulnerable Software

Kibokolabs: >> Watu Quiz >> 3.4.1.1 Security Vulnerabilities

Products

Pricing

Contact Us