Monitor vulnerabilities like this one.
Sign up free to get alerted when software you use is affected.
5.3
Quiz And Survey Master quiz-master-next Allows Unintended Access to Quiz Data
CVE-2026-25324
Summary
A security flaw in Quiz And Survey Master allows an attacker to access quiz data they shouldn't be able to see. This is a problem because it could allow someone to view sensitive information they shouldn't have access to. To fix this, update Quiz And Survey Master to version 10.3.5 or later.
Original title
Authorization Bypass Through User-Controlled Key vulnerability in ExpressTech Systems Quiz And Survey Master quiz-master-next allows Exploiting Incorrectly Configured Access Control Security Levels...
Original description
Authorization Bypass Through User-Controlled Key vulnerability in ExpressTech Systems Quiz And Survey Master quiz-master-next allows Exploiting Incorrectly Configured Access Control Security Levels.This issue affects Quiz And Survey Master: from n/a through <= 10.3.4.
nvd CVSS3.1
5.3
Vulnerability type
CWE-639
Authorization Bypass Through User-Controlled Key
Published: 19 Feb 2026 · Updated: 11 Mar 2026 · First seen: 6 Mar 2026