Chained Quiz

Bob

Developer

1.3.8

Latest version

1,000

Installations

Oct 8, 2025

Last updated

WordPress Plugin

No VDP

Claim ownership

Report vulnerability

Vulnerabilities

Vulnerability history

0 present

24 fixed

9 Mitigation rules

Unauthenticated Insecure Direct Object Reference via Cookie vulnerability
<= 1.3.5
Sep 17, 2025
Server Side Request Forgery (SSRF) vulnerability
<= 1.3.2.9
Jan 24, 2025
Broken Access Control vulnerability
<= 1.3.2.8
Jul 9, 2024
Cross Site Scripting (XSS) vulnerability
<= 1.3.2.8
Jun 28, 2024
Cross Site Scripting (XSS)
<= 1.3.2.5
Feb 6, 2023
Reflected Cross-Site Scripting (XSS) vulnerability via datef
<= 1.3.2
Dec 2, 2022
Cross-Site Request Forgery (CSRF) vulnerability leading to Arbitrary Quiz Deletion and Copying
<= 1.3.2.4
Dec 2, 2022
Cross-Site Request Forgery (CSRF) vulnerability leading to Submitted Response Deletion
<= 1.3.2.4
Dec 2, 2022
Cross-Site Request Forgery (CSRF) vulnerability leading to Question Deletion
<= 1.3.2.4
Dec 2, 2022
Reflected Cross-Site Scripting (XSS) vulnerability via date
<= 1.3.2.3
Dec 2, 2022
Reflected Cross-Site Scripting (XSS) vulnerability via ip
<= 1.3.2.3
Dec 2, 2022
Reflected Cross-Site Scripting (XSS) vulnerability via dn
<= 1.3.2.2
Dec 2, 2022
Reflected Cross-Site Scripting (XSS) vulnerability via ipf
<= 1.3.2
Dec 2, 2022
Reflected Cross-Site Scripting (XSS) vulnerability via emailf
<= 1.3.2
Dec 2, 2022
Reflected Cross-Site Scripting (XSS) vulnerability via dnf
<= 1.3.2
Dec 2, 2022
Reflected Cross-Site Scripting (XSS) via pointsf
<= 1.3.2
Dec 2, 2022
Auth. Stored Cross-Site Scripting (XSS) vulnerability via Facebook App ID
<= 1.3.2.2
Dec 2, 2022
Auth. Stored Cross-Site Scripting (XSS) vulnerability via Mailchimp API Key
<= 1.3.2.2
Dec 2, 2022
Authenticated Stored Cross-Site Scripting (XSS) vulnerability
<= 1.2.7.1
Sep 7, 2021
Authenticated Stored Cross-Site Scripting (XSS) vulnerability
<= 1.1.9
Feb 21, 2020
Unauthenticated Reflected Cross-Site Scripting (XSS) vulnerability
<= 1.1.8.1
Jan 16, 2020
Unauthenticated SQL Injection (SQLi) vulnerability
<= 1.0.8
Aug 28, 2018
Authenticated Persistent Cross-Site Scripting (XSS) Vulnerability
<= 0.9
Jan 12, 2017
Cross Site Scripting
<= 0.9.8
Dec 21, 2016