Multiple SQL injection vulnerabilities in wpQuiz 2.7 allow remote attackers to execute arbitrary SQL commands via the id parameter to (1) viewimage.php and (2) comments.php.
Exploit prediction scoring system (EPSS) score
EPSS Score 0.016
EPSS Ranking 72.6%