VYPR

WordPress Poll Plugin

by WordPress

CVEs (2)

  • CVE-2013-1401CriFeb 13, 2020
    risk 0.64cvss 9.8epss 0.05

    Multiple security bypass vulnerabilities in the editAnswer, deleteAnswer, addAnswer, and deletePoll functions in WordPress Poll Plugin 34.5 for WordPress allow a remote attacker to add, edit, and delete an answer and delete a poll.

  • CVE-2013-1400CriFeb 13, 2020
    risk 0.64cvss 9.8epss 0.03

    Multiple SQL injection vulnerabilities in CWPPoll.js in WordPress Poll Plugin 34.5 for WordPress allow attackers to execute arbitrary SQL commands via the pollid or poll_id parameter in a viewPollResults or userlogs action.