WP-Safety

ARI Stream Quiz – WordPress Quizzes Builder Security & Risk Analysis

wordpress.org/plugins/ari-stream-quiz

Easy to use WordPress Viral Quiz Plugin. Create Trivia and Personality quizzes in BuzzFeed style and collect unlimited leads.

2K active installs v1.3.6 PHP + WP 4.0+ Updated Jul 26, 2025
buzzfeed-quizexampersonality-testquiztrivia-quiz
98
A · Safe
CVEs total7
Unpatched0
Last CVEDec 29, 2023
Plugin page Download
Safety Verdict

Is ARI Stream Quiz – WordPress Quizzes Builder Safe to Use in 2026?

Generally Safe

Score 98/100

ARI Stream Quiz – WordPress Quizzes Builder has a strong security track record. Known vulnerabilities have been patched promptly.

7 known CVEsLast CVE: Dec 29, 2023Updated 8mo ago
Risk Assessment

The plugin "ari-stream-quiz" v1.3.6 exhibits a generally strong security posture based on the static analysis, with an extremely high percentage of SQL queries using prepared statements and output being properly escaped. The absence of critical or high severity taint flows and a minimal attack surface, with no unprotected entry points identified, are positive indicators. However, the plugin's history of 7 known CVEs, including one high and six medium severity vulnerabilities, raises significant concerns about past security oversights. The common vulnerability types (Deserialization, CSRF, XSS, Improper Authorization) suggest recurring issues with input validation and authorization mechanisms that have historically been exploited. While there are currently no unpatched vulnerabilities, the past pattern indicates a risk of future undiscovered or reintroduced vulnerabilities if not diligently maintained. The presence of file operations and a shortcode entry point, while currently appearing safe, warrant careful monitoring in future audits given the plugin's history.

Key Concerns

  • Significant history of known CVEs
  • History of high and medium severity vulnerabilities
  • Past common vulnerability types: Deserialization, CSRF, XSS, Improper Authorizat
  • Presence of file operations
Vulnerabilities
7

ARI Stream Quiz – WordPress Quizzes Builder Security Vulnerabilities

CVEs by Year

1 CVE in 2022
2022
6 CVEs in 2023
2023
Patched Has unpatched

Severity Breakdown

High
1
Medium
6

7 total CVEs

CVE-2023-52182high · 8.8Deserialization of Untrusted Data

ARI Stream Quiz <= 1.3.0 - Authenticated (Contributor+) PHP Object Injection

Dec 29, 2023 Patched in 1.3.1 (25d)
CVE-2023-51487medium · 5.4Cross-Site Request Forgery (CSRF)

ARI Stream Quiz <= 1.2.32 - Cross-Site Request Forgery

Dec 27, 2023 Patched in 1.3.0 (27d)
WF-b758c8a7-6220-4b54-af88-7933a530b5ba-ari-stream-quizmedium · 4.3Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting')

ARI Stream Quiz <= 1.2.32 - Cross-Site Request Forgery

Nov 21, 2023 Patched in 1.3.0 (63d)
CVE-2023-47835medium · 6.4Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting')

ARI Stream Quiz <= 1.2.32 - Authenticated (Contributor+) Stored Cross-Site Scripting

Nov 16, 2023 Patched in 1.3.0 (68d)
WF-b6c5f933-b71b-4475-abdf-4cffff2a1a6c-ari-stream-quizmedium · 4.3Cross-Site Request Forgery (CSRF)

ARI Stream Quiz <= 1.2.32 - Cross-Site Request Forgery

Nov 14, 2023 Patched in 1.3.0 (70d)
CVE-2023-47513medium · 4.3Improper Authorization

ARI Stream Quiz <= 1.3.2 - Authenticated(Contributor+) Content Injection

Nov 7, 2023 Patched in 1.3.3 (137d)
WF-bdce01f2-7c79-4b1d-8da2-f6ce118856a1-ari-stream-quizmedium · 6.1Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting')

ARI Stream Quiz – WordPress Quizzes Builder <= 1.2.26 - Reflected Cross-Site Scripting

Feb 17, 2022 Patched in 1.2.27 (705d)
Code Analysis
Analyzed Mar 16, 2026

ARI Stream Quiz – WordPress Quizzes Builder Code Analysis

Dangerous Functions
0
Raw SQL Queries
1
18 prepared
Unescaped Output
4
284 escaped
Nonce Checks
8
Capability Checks
5
File Operations
4
External Requests
0
Bundled Libraries
0

SQL Query Safety

95% prepared19 total queries

Output Escaping

99% escaped288 total outputs
Attack Surface

ARI Stream Quiz – WordPress Quizzes Builder Attack Surface

Entry Points1
Unprotected0

Shortcodes 1

[streamquiz] includes\class-plugin.php:22
WordPress Hooks 15
actionplugins_loadedari-stream-quiz.php:81
actioninitincludes\class-plugin.php:15
actionadmin_enqueue_scriptsincludes\class-plugin.php:30
actionadmin_menuincludes\class-plugin.php:36
actionadmin_initincludes\class-plugin.php:42
actionwp_headincludes\class-plugin.php:49
actionwp_enqueue_scriptsincludes\class-plugin.php:56
filterthe_contentincludes\class-plugin.php:64
filterthe_titleincludes\class-plugin.php:70
filterset-screen-optionincludes\class-plugin.php:78
filterscript_loader_tagincludes\class-plugin.php:135
filterparent_fileincludes\class-plugin.php:221
filteradmin_titleincludes\class-plugin.php:317
filterdefault_contentincludes\class-plugin.php:324
filterdefault_titleincludes\class-plugin.php:330
Maintenance & Trust

ARI Stream Quiz – WordPress Quizzes Builder Maintenance & Trust

Maintenance Signals

WordPress version tested6.8.5
Last updatedJul 26, 2025
PHP min version
Downloads70K

Community Trust

Rating100/100
Number of ratings22
Active installs2K
Alternatives

ARI Stream Quiz – WordPress Quizzes Builder Alternatives

Quiz Cat – WordPress Quiz Plugin

Quiz Cat – WordPress Quiz Plugin

quiz-cat

A
99

Quiz Cat Lets You Create Beautiful Viral BuzzFeed-style Quizzes That Drive Social Shares & User Engagement. Set It Up In 2 Minutes.

5K 1 CVE
Quiz and Survey Master (QSM) – Easy Quiz and Survey Maker

Quiz and Survey Master (QSM) – Easy Quiz and Survey Maker

quiz-master-next

B
76

Create quizzes, surveys, and tests easily on WordPress with this versatile plugin. Perfect for engaging any audience and gathering valuable insights!

40K 58 CVEs
Quiz Maker

Quiz Maker

quiz-maker

B
82

QUIZ MAKER plugin allows you to make an unlimited number of Quizzes, Exams and Tests

20K 22 CVEs
HD Quiz

HD Quiz

hd-quiz

A
95

Create a Quiz. An easy-to-use feature rich plugin to create quizzes with quiz timer, pagination, hints, advanced marking, and leading help and support

7K 4 CVEs
Watu Quiz

Watu Quiz

watu

A
88

Creates exams, surveys, and quizzes with unlimited number of questions and answers. Mobile/touch - friendly.

3K 17 CVEs
Developer Profile

ARI Stream Quiz – WordPress Quizzes Builder Developer Profile

arisoft

4 plugins · 17K total installs

71
trust score
Avg Security Score
89/100
Avg Patch Time
197 days
View full developer profile
Detection Fingerprints

How We Detect ARI Stream Quiz – WordPress Quizzes Builder

Patterns used to identify this plugin on WordPress sites during automated security audits and web crawling.

Asset Fingerprints

Asset Paths
/wp-content/plugins/ari-stream-quiz/assets/css/frontend.css/wp-content/plugins/ari-stream-quiz/assets/css/frontend.min.css/wp-content/plugins/ari-stream-quiz/assets/js/frontend.js/wp-content/plugins/ari-stream-quiz/assets/js/frontend.min.js/wp-content/plugins/ari-stream-quiz/assets/js/editor.js/wp-content/plugins/ari-stream-quiz/assets/js/editor.min.js/wp-content/plugins/ari-stream-quiz/assets/js/admin.js/wp-content/plugins/ari-stream-quiz/assets/js/admin.min.js+2 more
Script Paths
/wp-content/plugins/ari-stream-quiz/assets/js/frontend.js/wp-content/plugins/ari-stream-quiz/assets/js/editor.js/wp-content/plugins/ari-stream-quiz/assets/js/admin.js
Version Parameters
ari-stream-quiz/assets/css/frontend.css?ver=ari-stream-quiz/assets/js/frontend.js?ver=ari-stream-quiz/assets/js/editor.js?ver=ari-stream-quiz/assets/js/admin.js?ver=ari-stream-quiz/assets/css/admin.css?ver=

HTML / DOM Fingerprints

CSS Classes
ari-stream-quiz-frontendari-stream-quiz-quiz-wrapperari-stream-quiz-question-wrapperari-stream-quiz-answers-wrapperari-stream-quiz-answer-itemari-stream-quiz-results-wrapperari-stream-quiz-admin-pageari-stream-quiz-quizzes-list+2 more
Data Attributes
data-quiz-iddata-inline-scriptsdata-hide-title
JS Globals
AriStreamQuizFrontendAriStreamQuizEditorAriStreamQuizAdmin
Shortcode Output
[streamquiz id="
FAQ

Frequently Asked Questions about ARI Stream Quiz – WordPress Quizzes Builder