Cross-Site Scripting Vulnerability in Fyrebox Quizzes by CyrilG
CVE-2025-50035
6.5MEDIUM
What is CVE-2025-50035?
A vulnerability in the Fyrebox Quizzes plugin developed by CyrilG has been identified, allowing for stored Cross-Site Scripting (XSS). This flaw arises from improper handling of input during web page generation, potentially exposing users to malicious scripts. Users of affected versions, ranging from n/a through 3.0, should take immediate action to mitigate associated risks.
Affected Version(s)
Fyrebox Quizzes <= 3.0