CVE-2025-6790 Information

Aug 15, 2025 cve

Description

The Quiz and Survey Master (QSM) WordPress plugin before 10.2.3 does not have CSRF check in place when updating its settings which could allow attackers to make a logged in admin change them via a CSRF attack.

Reference

https://wpscan.com/vulnerability/af337f9f-c955-49eb-9675-2f85da96fcfe/ https://wpscan.com/vulnerability/af337f9f-c955-49eb-9675-2f85da96fcfe/

CNNVD-202508-1490 (Published: 2025-08-14)

Share on:

CVE-2025-6790 Information

Description

Reference

Related CNNVD