VYPR

Vinoj Cardoza WordPress Poll Plugin

by WordPress

CVEs (1)

  • CVE-2020-24315HigAug 26, 2020
    risk 0.49cvss 7.5epss 0.02

    Vinoj Cardoza WordPress Poll Plugin v36 and lower executes SQL statement passed in via the pollid POST parameter due to a lack of user input escaping. This allows users who craft specific SQL statements to dump the entire targets database.