CVE-2025-58014 — Cross-Site Request Forgery in PRO Quiz Maker

CWE-352 — Cross-Site Request Forgery3 documents3 sources

Severity

—N/A

No vector

EPSS

0.0%

top 98.38%

CISA KEV

Not in KEV

Exploit

No known exploits

Affected products

AYS PRO Quiz Maker Ays-pro Quiz Maker

Timeline

PublishedSep 22

Description

Cross-Site Request Forgery (CSRF) vulnerability in Ays Pro Quiz Maker quiz-maker allows Cross Site Request Forgery.This issue affects Quiz Maker: from n/a through <= 6.7.0.64.

Affected Packages2 packages

▶CVEListV5ays_pro/quiz_maker6.7.0.64

▶NVDays-pro/quiz_maker6.7.0.61

🔴Vulnerability Details

CVEList

WordPress Quiz Maker Plugin <= 6.7.0.64 - Cross Site Request Forgery (CSRF) Vulnerability↗2025-09-22

▶

GHSA

GHSA-pvj8-wvww-pxcr: Cross-Site Request Forgery (CSRF) vulnerability in Ays Pro Quiz Maker allows Cross Site Request Forgery↗2025-09-22

▶