4:["$","div",null,{"className":"wrap","children":[["$","script",null,{"type":"application/ld+json","dangerouslySetInnerHTML":{"__html":"{\"@context\":\"https://schema.org\",\"@type\":\"CollectionPage\",\"name\":\"Vulnerabilidades em ExpressTech\",\"url\":\"https://vexday.io/pt/vendor/ExpressTech\",\"isPartOf\":{\"@type\":\"WebSite\",\"name\":\"Vexday\",\"url\":\"https://vexday.io\"},\"mainEntity\":{\"@type\":\"ItemList\",\"numberOfItems\":39},\"breadcrumb\":{\"@type\":\"BreadcrumbList\",\"itemListElement\":[{\"@type\":\"ListItem\",\"position\":1,\"name\":\"Início\",\"item\":\"https://vexday.io/pt\"},{\"@type\":\"ListItem\",\"position\":2,\"name\":\"Tecnologias\",\"item\":\"https://vexday.io/pt/vendors\"},{\"@type\":\"ListItem\",\"position\":3,\"name\":\"ExpressTech\"}]}}"}}],["$","nav",null,{"className":"crumbs","children":[["$","$La",null,{"href":"/pt","children":"Início"}]," ",["$","span",null,{"children":"/"}]," ",["$","$La",null,{"href":"/pt/vendors","children":"Tecnologias"}]," ",["$","span",null,{"children":"/"}]," ",["$","b",null,{"children":"ExpressTech"}]]}],["$","div",null,{"className":"sec-head","style":{"marginTop":18},"children":[["$","h1",null,{"style":{"fontSize":"1.7rem","margin":0,"fontFamily":"var(--font-display)","fontWeight":700},"children":["Vulnerabilidades em"," ",["$","span",null,{"style":{"color":"var(--orange)"},"children":"ExpressTech"}]]}],["$","span",null,{"className":"t","children":["39"," ","resultados"]}]]}],["$","div",null,{"className":"list","children":[["$","$La","CVE-2021-36863",{"className":"item","href":"/pt/cve/CVE-2021-36863","children":[["$","span",null,{"className":"cid","children":"CVE-2021-36863"}],["$","span",null,{"className":"sevtag MEDIUM","children":"MEDIUM"}],["$","span",null,{"className":"tt2","children":"WordPress Quiz And Survey Master plugin <= 7.3.4 - Auth. Stored Cross-Site Scripting (XSS) vulnerability"}],["$","span",null,{"className":"bd","children":[["$","span",null,{"className":"epss","children":["EPSS ",["$","b",null,{"children":"0.4%"}]]}],false]}]]}],["$","$La","CVE-2021-36905",{"className":"item","href":"/pt/cve/CVE-2021-36905","children":[["$","span",null,{"className":"cid","children":"CVE-2021-36905"}],["$","span",null,{"className":"sevtag MEDIUM","children":"MEDIUM"}],["$","span",null,{"className":"tt2","children":"WordPress Quiz And Survey Master plugin <= 7.3.4 - Multiple Auth. Stored Cross-Site Scripting (XSS) vulnerabilities"}],["$","span",null,{"className":"bd","children":[["$","span",null,{"className":"epss","children":["EPSS ",["$","b",null,{"children":"0.4%"}]]}],false]}]]}],["$","$La","CVE-2022-40698",{"className":"item","href":"/pt/cve/CVE-2022-40698","children":[["$","span",null,{"className":"cid","children":"CVE-2022-40698"}],["$","span",null,{"className":"sevtag MEDIUM","children":"MEDIUM"}],["$","span",null,{"className":"tt2","children":"WordPress Quiz And Survey Master plugin <= 7.3.10 - Cross-Site Scripting (XSS) vulnerability"}],["$","span",null,{"className":"bd","children":[["$","span",null,{"className":"epss","children":["EPSS ",["$","b",null,{"children":"0.4%"}]]}],false]}]]}],["$","$La","CVE-2021-36864",{"className":"item","href":"/pt/cve/CVE-2021-36864","children":[["$","span",null,{"className":"cid","children":"CVE-2021-36864"}],["$","span",null,{"className":"sevtag LOW","children":"LOW"}],["$","span",null,{"className":"tt2","children":"WordPress Quiz And Survey Master plugin <= 7.3.4 - Auth. Reflected Cross-Site Scripting (XSS) vulnerability"}],["$","span",null,{"className":"bd","children":[["$","span",null,{"className":"epss","children":["EPSS ",["$","b",null,{"children":"0.4%"}]]}],false]}]]}],["$","$La","CVE-2021-36865",{"className":"item","href":"/pt/cve/CVE-2021-36865","children":[["$","span",null,{"className":"cid","children":"CVE-2021-36865"}],["$","span",null,{"className":"sevtag LOW","children":"LOW"}],["$","span",null,{"className":"tt2","children":"WordPress Quiz And Survey Master plugin <= 7.3.4 - Insecure direct object references (IDOR) vulnerability"}],["$","span",null,{"className":"bd","children":[["$","span",null,{"className":"epss","children":["EPSS ",["$","b",null,{"children":"0.4%"}]]}],false]}]]}],["$","$La","CVE-2023-47834",{"className":"item","href":"/pt/cve/CVE-2023-47834","children":[["$","span",null,{"className":"cid","children":"CVE-2023-47834"}],["$","span",null,{"className":"sevtag MEDIUM","children":"MEDIUM"}],["$","span",null,{"className":"tt2","children":"WordPress Quiz And Survey Master Plugin <= 8.1.13 is vulnerable to Cross Site Scripting (XSS)"}],["$","span",null,{"className":"bd","children":[["$","span",null,{"className":"epss","children":["EPSS ",["$","b",null,{"children":"0.4%"}]]}],false]}]]}],["$","$La","CVE-2022-46862",{"className":"item","href":"/pt/cve/CVE-2022-46862","children":[["$","span",null,{"className":"cid","children":"CVE-2022-46862"}],["$","span",null,{"className":"sevtag MEDIUM","children":"MEDIUM"}],["$","span",null,{"className":"tt2","children":"WordPress Quiz And Survey Master Plugin <= 8.0.7 is vulnerable to Cross Site Request Forgery (CSRF)"}],["$","span",null,{"className":"bd","children":[["$","span",null,{"className":"epss","children":["EPSS ",["$","b",null,{"children":"0.4%"}]]}],false]}]]}],["$","$La","CVE-2023-37984",{"className":"item","href":"/pt/cve/CVE-2023-37984","children":[["$","span",null,{"className":"cid","children":"CVE-2023-37984"}],["$","span",null,{"className":"sevtag MEDIUM","children":"MEDIUM"}],["$","span",null,{"className":"tt2","children":"WordPress Quiz And Survey Master plugin <= 8.1.10 - Broken Access Control vulnerability"}],["$","span",null,{"className":"bd","children":[["$","span",null,{"className":"epss","children":["EPSS ",["$","b",null,{"children":"0.4%"}]]}],false]}]]}],["$","$La","CVE-2026-6448",{"className":"item","href":"/pt/cve/CVE-2026-6448","children":[["$","span",null,{"className":"cid","children":"CVE-2026-6448"}],["$","span",null,{"className":"sevtag MEDIUM","children":"MEDIUM"}],["$","span",null,{"className":"tt2","children":"Quiz and Survey Master (QSM) <= 11.1.2 - Authenticated (Admin+) SQL Injection via 'order' and 'limit' Parameters"}],["$","span",null,{"className":"bd","children":[["$","span",null,{"className":"epss","children":["EPSS ",["$","b",null,{"children":"0.4%"}]]}],false]}]]}],["$","$La","CVE-2024-27966",{"className":"item","href":"/pt/cve/CVE-2024-27966","children":[["$","span",null,{"className":"cid","children":"CVE-2024-27966"}],["$","span",null,{"className":"sevtag MEDIUM","children":"MEDIUM"}],["$","span",null,{"className":"tt2","children":"WordPress Quiz And Survey Master plugin <= 8.2.2 - Cross Site Scripting (XSS) vulnerability"}],["$","span",null,{"className":"bd","children":[["$","span",null,{"className":"epss","children":["EPSS ",["$","b",null,{"children":"0.3%"}]]}],false]}]]}],["$","$La","CVE-2026-2412",{"className":"item","href":"/pt/cve/CVE-2026-2412","children":[["$","span",null,{"className":"cid","children":"CVE-2026-2412"}],["$","span",null,{"className":"sevtag MEDIUM","children":"MEDIUM"}],["$","span",null,{"className":"tt2","children":"Quiz and Survey Master (QSM) <= 10.3.5 - Authenticated (Contributor+) SQL Injection via 'merged_question' Parameter"}],["$","span",null,{"className":"bd","children":[["$","span",null,{"className":"epss","children":["EPSS ",["$","b",null,{"children":"0.3%"}]]}],false]}]]}],["$","$La","CVE-2023-51507",{"className":"item","href":"/pt/cve/CVE-2023-51507","children":[["$","span",null,{"className":"cid","children":"CVE-2023-51507"}],["$","span",null,{"className":"sevtag MEDIUM","children":"MEDIUM"}],["$","span",null,{"className":"tt2","children":"WordPress Quiz And Survey Master plugin <= 8.1.16 - Broken Access Control vulnerability"}],["$","span",null,{"className":"bd","children":[["$","span",null,{"className":"epss","children":["EPSS ",["$","b",null,{"children":"0.3%"}]]}],false]}]]}],["$","$La","CVE-2023-26524",{"className":"item","href":"/pt/cve/CVE-2023-26524","children":[["$","span",null,{"className":"cid","children":"CVE-2023-26524"}],["$","span",null,{"className":"sevtag MEDIUM","children":"MEDIUM"}],["$","span",null,{"className":"tt2","children":"WordPress Quiz And Survey Master Plugin <= 8.0.10 is vulnerable to Cross Site Request Forgery (CSRF)"}],["$","span",null,{"className":"bd","children":[["$","span",null,{"className":"epss","children":["EPSS ",["$","b",null,{"children":"0.3%"}]]}],false]}]]}],["$","$La","CVE-2025-9637",{"className":"item","href":"/pt/cve/CVE-2025-9637","children":[["$","span",null,{"className":"cid","children":"CVE-2025-9637"}],["$","span",null,{"className":"sevtag MEDIUM","children":"MEDIUM"}],["$","span",null,{"className":"tt2","children":"Quiz and Survey Master (QSM) <= 10.3.1 - Missing Authorization to Unpublished, Private And Password-Protected Quiz Information Disclosure And Image Response Uploads"}],["$","span",null,{"className":"bd","children":[["$","span",null,{"className":"epss","children":["EPSS ",["$","b",null,{"children":"0.2%"}]]}],false]}]]}],["$","$La","CVE-2025-9318",{"className":"item","href":"/pt/cve/CVE-2025-9318","children":[["$","span",null,{"className":"cid","children":"CVE-2025-9318"}],["$","span",null,{"className":"sevtag MEDIUM","children":"MEDIUM"}],["$","span",null,{"className":"tt2","children":"Quiz and Survey Master (QSM) <= 10.3.1 - Authenticated (Subscriber+) SQL Injection via `is_linking` Query Parameter"}],["$","span",null,{"className":"bd","children":[["$","span",null,{"className":"epss","children":["EPSS ",["$","b",null,{"children":"0.2%"}]]}],false]}]]}],["$","$La","CVE-2023-51521",{"className":"item","href":"/pt/cve/CVE-2023-51521","children":[["$","span",null,{"className":"cid","children":"CVE-2023-51521"}],["$","span",null,{"className":"sevtag MEDIUM","children":"MEDIUM"}],["$","span",null,{"className":"tt2","children":"WordPress Quiz And Survey Master plugin <= 8.1.18 - Cross Site Request Forgery (CSRF) vulnerability"}],["$","span",null,{"className":"bd","children":[["$","span",null,{"className":"epss","children":["EPSS ",["$","b",null,{"children":"0.2%"}]]}],false]}]]}],["$","$La","CVE-2025-9294",{"className":"item","href":"/pt/cve/CVE-2025-9294","children":[["$","span",null,{"className":"cid","children":"CVE-2025-9294"}],["$","span",null,{"className":"sevtag MEDIUM","children":"MEDIUM"}],["$","span",null,{"className":"tt2","children":"Quiz And Survey Master <= 10.3.1 - Missing Authorization to Authenticated (Subscriber+) Quiz Results Deletion"}],["$","span",null,{"className":"bd","children":[["$","span",null,{"className":"epss","children":["EPSS ",["$","b",null,{"children":"0.2%"}]]}],false]}]]}],["$","$La","CVE-2026-48867",{"className":"item","href":"/pt/cve/CVE-2026-48867","children":[["$","span",null,{"className":"cid","children":"CVE-2026-48867"}],["$","span",null,{"className":"sevtag HIGH","children":"HIGH"}],["$","span",null,{"className":"tt2","children":"WordPress Quiz And Survey Master plugin <= 11.1.2 - Cross Site Scripting (XSS) vulnerability"}],["$","span",null,{"className":"bd","children":[["$","span",null,{"className":"epss","children":["EPSS ",["$","b",null,{"children":"0.2%"}]]}],false]}]]}],["$","$La","CVE-2026-40787",{"className":"item","href":"/pt/cve/CVE-2026-40787","children":[["$","span",null,{"className":"cid","children":"CVE-2026-40787"}],["$","span",null,{"className":"sevtag HIGH","children":"HIGH"}],["$","span",null,{"className":"tt2","children":"WordPress Quiz And Survey Master plugin <= 11.0.0 - Cross Site Scripting (XSS) vulnerability"}],["$","span",null,{"className":"bd","children":[["$","span",null,{"className":"epss","children":["EPSS ",["$","b",null,{"children":"0.2%"}]]}],false]}]]}]]}],["$","div",null,{"className":"pagination","children":[["$","$La",null,{"href":"?page=1","children":"← anterior"}],["$","span",null,{"className":"pgnum","children":["página"," ","2"," / ","2"]}],["$","span",null,{"className":"off","children":"próxima →"}]]}]]}]