Chained Quiz 1.3.5 Vulnerable to Unauthenticated IDOR via Cookie Manipulation

Unauthenticated IDOR Vulnerability Discovered in Chained Quiz 1.3.5

Security researchers have identified an unauthenticated insecure direct object reference (IDOR) vulnerability in Chained Quiz 1.3.5, a popular quiz management plugin. The flaw, tracked under Exploit-DB ID 52464, enables attackers to access sensitive data without authentication by manipulating cookies.

Technical Details

The vulnerability stems from improper access controls in the plugin’s cookie-handling mechanism. Attackers can exploit this by modifying cookie values to bypass authentication and directly reference objects, such as user data or quiz results, without proper authorization. The exploit does not require prior authentication, making it particularly severe for affected deployments.

Impact Analysis

Organizations using Chained Quiz 1.3.5 are at risk of unauthorized data exposure, including:

• User quiz submissions
• Personally identifiable information (PII)
• Administrative quiz configurations

The flaw is classified as high severity due to its unauthenticated nature and potential for data leakage. No CVE ID has been assigned at the time of disclosure.

Recommendations

• Immediately upgrade to the latest patched version of Chained Quiz if available.
• Audit quiz-related plugins for similar access control weaknesses.
• Monitor logs for unusual cookie manipulation attempts.
• Restrict plugin access to trusted users until a fix is applied.

For further details, refer to the original exploit proof-of-concept on Exploit-DB.