Skip to main content

Poll Survey Questionnaire And Voting System

2 CVEs product

Monthly

CVE-2022-34656 MEDIUM This Month

Authenticated (admin+) Cross-Site Scripting (XSS) vulnerability in wpdevart Poll, Survey, Questionnaire and Voting system plugin <= 1.7.4 at WordPress. Rated medium severity (CVSS 4.8), this vulnerability is remotely exploitable, low attack complexity. No vendor patch available.

XSS WordPress Poll Survey Questionnaire And Voting System
NVD
CVSS 3.1
4.8
EPSS
0.4%
CVE-2021-24442 CRITICAL POC THREAT Act Now

The Poll, Survey, Questionnaire and Voting system WordPress plugin before 1.5.3 did not sanitise, escape or validate the date_answers[] POST parameter before using it in a SQL statement when sending. Rated critical severity (CVSS 9.8), this vulnerability is remotely exploitable, no authentication required, low attack complexity. Public exploit code available and no vendor patch available.

WordPress SQLi Poll Survey Questionnaire And Voting System
NVD WPScan
CVSS 3.1
9.8
EPSS
46.9%
EPSS 0% CVSS 4.8
MEDIUM This Month

Authenticated (admin+) Cross-Site Scripting (XSS) vulnerability in wpdevart Poll, Survey, Questionnaire and Voting system plugin <= 1.7.4 at WordPress. Rated medium severity (CVSS 4.8), this vulnerability is remotely exploitable, low attack complexity. No vendor patch available.

XSS WordPress Poll Survey Questionnaire And Voting System
NVD
EPSS 47% CVSS 9.8
CRITICAL POC THREAT Act Now

The Poll, Survey, Questionnaire and Voting system WordPress plugin before 1.5.3 did not sanitise, escape or validate the date_answers[] POST parameter before using it in a SQL statement when sending. Rated critical severity (CVSS 9.8), this vulnerability is remotely exploitable, no authentication required, low attack complexity. Public exploit code available and no vendor patch available.

WordPress SQLi Poll Survey Questionnaire And Voting System
NVD WPScan

This site uses cookies essential for authentication and security. No tracking or analytics cookies are used. Privacy Policy