CVE-2024-6028

CRITICAL EXPLOITED NUCLEI

Quiz Maker < 6.5.8.3 - Unauthenticated Time-Based SQL Injection via ays_questions Parameter

Title source: llm
STIX 2.1

Exploitation Summary

CVE-2024-6028 has been observed exploited in the wild (reported by VulnCheck KEV). EIP tracks 1 public exploit from researchers including gmh5225. A Nuclei detection template is also available.

AI-analyzed exploit summary This repository contains a proof-of-concept for an unauthenticated time-based SQL injection vulnerability in the Quiz Maker WordPress plugin (CVE-2024-6028). The exploit targets the 'ays_questions' parameter in the 'ays_finish_quiz' action, allowing attackers to inject malicious SQL queries.

Description

The Quiz Maker plugin for WordPress is vulnerable to time-based SQL Injection via the 'ays_questions' parameter in all versions up to, and including, 6.5.8.3 due to insufficient escaping on the user supplied parameter and lack of sufficient preparation on the existing SQL query. This makes it possible for unauthenticated attackers to append additional SQL queries into already existing queries that can be used to extract sensitive information from the database.

Exploits (1)

nomisec WORKING POC
by gmh5225 · poc
https://github.com/gmh5225/CVE-2024-6028-Poc

This repository contains a proof-of-concept for an unauthenticated time-based SQL injection vulnerability in the Quiz Maker WordPress plugin (CVE-2024-6028). The exploit targets the 'ays_questions' parameter in the 'ays_finish_quiz' action, allowing attackers to inject malicious SQL queries.

Classification
Working Poc 95%
Attack Type
Sqli
Complexity
Trivial
Reliability
Reliable
Target: Quiz Maker WordPress plugin <= 6.5.8.3
No auth needed
Prerequisites: WordPress site with vulnerable Quiz Maker plugin installed
devstral-2 · analyzed Feb 16, 2026 Full analysis →

Nuclei Templates (1)

Quiz Maker <= 6.5.8.3 - SQL Injection
CRITICALVERIFIEDby s4e-io

References (6)

Core 6
Core References

Scores

CVSS v3 9.8
EPSS 0.8030
EPSS Percentile 99.1%
Attack Vector NETWORK
CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H

CISA SSVC

Vulnrichment
Exploitation none
Automatable yes
Technical Impact total

Details

VulnCheck KEV 2026-05-04
CWE
CWE-89
Status published
Products (2)
ays-pro/Quiz Maker < 6.5.8.3
ays-pro/quiz_maker < 6.5.8.4
Published Jun 25, 2024
Tracked Since Feb 18, 2026