High severity8.2NVD Advisory· Published May 10, 2026· Updated May 12, 2026
CVE-2021-47941
CVE-2021-47941
Description
WordPress Plugin Survey & Poll 1.5.7.3 contains an SQL injection vulnerability that allows unauthenticated attackers to execute arbitrary SQL queries by injecting malicious code through the wp_sap cookie parameter. Attackers can craft SQL payloads in the cookie to extract sensitive database information including usernames, passwords, and other confidential data from the WordPress database.
AI Insight
LLM-synthesized narrative grounded in this CVE's description and references.
Affected products
1- Range: =1.5.7.3
Patches
Vulnerability mechanics
References
3News mentions
0No linked articles in our index yet.