Bob Watu Quiz vulnerabilities

CVE-2025-68587 [HIGH] CWE-862 CVE-2025-68587: Missing Authorization vulnerability in Bob Watu Quiz watu allows Exploiting Incorrectly Configured A Missing Authorization vulnerability in Bob Watu Quiz watu allows Exploiting Incorrectly Configured Access Control Security Levels.This issue affects Watu Quiz: from n/a through <= 3.4.5.

CVE-2025-67976 [MEDIUM] CWE-862 CVE-2025-67976: Missing Authorization vulnerability in Bob Watu Quiz watu allows Exploiting Incorrectly Configured A Missing Authorization vulnerability in Bob Watu Quiz watu allows Exploiting Incorrectly Configured Access Control Security Levels.This issue affects Watu Quiz: from n/a through <= 3.4.5.

CVE-2025-46242 [MEDIUM] CWE-89 CVE-2025-46242: Improper Neutralization of Special Elements used in an SQL Command ('SQL Injection') vulnerability i Improper Neutralization of Special Elements used in an SQL Command ('SQL Injection') vulnerability in Bob Watu Quiz watu allows SQL Injection.This issue affects Watu Quiz: from n/a through <= 3.4.3.

CVE-2025-30844 [MEDIUM] CWE-79 CVE-2025-30844: Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') vulnerability i Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') vulnerability in Bob Watu Quiz watu allows Reflected XSS.This issue affects Watu Quiz: from n/a through <= 3.4.2.

CVE-2024-53792 [HIGH] CWE-89 CVE-2024-53792: Improper Neutralization of Special Elements used in an SQL Command ('SQL Injection') vulnerability i Improper Neutralization of Special Elements used in an SQL Command ('SQL Injection') vulnerability in Bob Watu Quiz watu allows SQL Injection.This issue affects Watu Quiz: from n/a through <= 3.4.1.2.