These pages are published after PatchSiren validates generated defensive summaries against stored public CVE and source evidence.
A high-severity Unauthenticated Cross Site Scripting (XSS) vulnerability was discovered in Quiz And Survey Master plugin versions <= 11.1.2. This vulnerability, tracked as CVE-2026-48867, has a CVSS score of 7.1 and is considered HIGH severity. The vulnerability was made public on June 15, 2026.
CVE-2026-40787 is a Unauthenticated Cross Site Scripting (XSS) vulnerability affecting Quiz And Survey versions up to 11.0.0. The vulnerability has a CVSS score of 7.1 and is considered HIGH severity. It was published on [2026-06-15T21:16:50.943Z](https://www.cve.org/CVERecord?id=CVE-2026-40787) and last modified on [2026-06-15T21:24:32.790Z](https://www.cve.org/CVERecord?id=CVE-2026-40787).