Vulnerabilities and security researches forquestion-answer question-answer
Direction: ascendingApr 03, 2025
Question Answer # CVE-2025-31810
- CVE, Research URL
- Home page URL
- Application
- Date
- Apr 01, 2025
- Research Description
- Missing Authorization vulnerability in PickPlugins Question Answer question-answer allows Accessing Functionality Not Properly Constrained by ACLs.This issue affects Question Answer: from n/a through <= 1.2.73.
- Affected versions
-
max 1.2.73.
- Status
-
vulnerable
Apr 18, 2025
Question Answer # CVE-2025-32646
- CVE, Research URL
- Home page URL
- Application
- Date
- Apr 17, 2025
- Research Description
- Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') vulnerability in PickPlugins Question Answer question-answer allows Reflected XSS.This issue affects Question Answer: from n/a through <= 1.2.70.
- Affected versions
-
max 1.2.71.
- Status
-
vulnerable
Jun 13, 2026
Question Answer # CVE-2025-32647
- CVE, Research URL
- Home page URL
- Application
- Date
- Apr 17, 2025
- Research Description
- Deserialization of Untrusted Data vulnerability in PickPlugins Question Answer question-answer allows Object Injection.This issue affects Question Answer: from n/a through <= 1.2.73.
- Affected versions
-
max 1.2.73.
- Status
-
vulnerable