Wpdevart Poll Survey Questionnaire And Voting System vulnerabilities
2 known vulnerabilities affecting wpdevart/poll_survey_questionnaire_and_voting_system.
Total CVEs
2
CISA KEV
0
Public exploits
1
Exploited in wild
1
Severity breakdown
CRITICAL1MEDIUM1
Vulnerabilities
Page 1 of 1
CVE-2021-24442P1CRITICALCVSS 9.8ExploitedPoCfixed in 1.5.32021-07-12
CVE-2021-24442 [CRITICAL] CWE-89 CVE-2021-24442: The Poll, Survey, Questionnaire and Voting system WordPress plugin before 1.5.3 did not sanitise, es
The Poll, Survey, Questionnaire and Voting system WordPress plugin before 1.5.3 did not sanitise, escape or validate the date_answers[] POST parameter before using it in a SQL statement when sending a Poll result, allowing unauthenticated users to perform SQL Injection attacks
nvd
CVE-2022-34656P4MEDIUMCVSS 4.8≤ 1.7.42022-09-06
CVE-2022-34656 [MEDIUM] CWE-79 CVE-2022-34656: Authenticated (admin+) Cross-Site Scripting (XSS) vulnerability in wpdevart Poll, Survey, Questionna
Authenticated (admin+) Cross-Site Scripting (XSS) vulnerability in wpdevart Poll, Survey, Questionnaire and Voting system plugin <= 1.7.4 at WordPress.
nvd