CVE-2025-24577

Missing Authorization vulnerability in Ays Pro Poll Maker allows Exploiting Incorrectly Configured Access Control Security Levels. This issue affects Poll Maker: from n/a through 5.5.0...

CVE-2025-24577 WordPress Poll Maker plugin <= 5.5.0 - Broken Access Control vulnerability

Missing Authorization vulnerability in Ays Pro Poll Maker poll-maker allows Exploiting Incorrectly Configured Access Control Security Levels.This issue affects Poll Maker: from n/a through = 5.5.0...

CVE-2025-24577 WordPress Poll Maker plugin <= 5.5.0 - Broken Access Control vulnerability

Missing Authorization vulnerability in Ays Pro Poll Maker poll-maker allows Exploiting Incorrectly Configured Access Control Security Levels.This issue affects Poll Maker: from n/a through = 5.5.0...

CVE-2025-32562 WordPress WP Easy Poll Plugin <= 2.2.9 - Reflected Cross Site Scripting (XSS) vulnerability

Improper Neutralization of Input During Web Page Generation 'Cross-site Scripting' vulnerability in aviplugins.com WP Easy Poll wp-easy-poll-afo allows Reflected XSS.This issue affects WP Easy Poll: from n/a through = 2.2.9...

PT-2025-17033 · Unknown · Ays Pro Poll Maker

Name of the Vulnerable Software and Affected Versions: Ays Pro Poll Maker versions through 5.5.0 Description: The issue is related to a Missing Authorization vulnerability, which allows exploiting incorrectly configured access control security levels. Recommendations: For versions through 5.5.0,...

WordPress plugin Poll Maker 安全漏洞

WordPress and WordPress plugin are both products of the WordPress Foundation.WordPress is a blogging platform developed using the PHP language. The platform supports setting up personal blog sites on servers with PHP and MySQL.WordPress plugin is an application plugin. A security vulnerability...

WordPress plugin WP Easy Poll 跨站脚本漏洞

WordPress and WordPress plugin are both products of the WordPress Foundation.WordPress is a blogging platform developed using the PHP language. The platform supports setting up personal blog sites on servers with PHP and MySQL.WordPress plugin is an application plugin. A cross-site scripting...

PT-2025-17117 · WordPress · Wp Easy Poll

Name of the Vulnerable Software and Affected Versions: WP Easy Poll versions 2.2.9 and earlier Description: The issue is related to Improper Neutralization of Input During Web Page Generation, also known as Cross-site Scripting. This allows for Reflected XSS in WP Easy Poll. Recommendations: For ...

DEBIAN-CVE-2025-22086

In the Linux kernel, the following vulnerability has been resolved: RDMA/mlx5: Fix mlx5pollone curqp update flow When curqp isn't NULL, in order to avoid fetching the QP from the radix tree again we check if the next cqe QP is identical to the one we already have. The bug however is that we are...

CVE-2025-22086

In the Linux kernel, the following vulnerability has been resolved: RDMA/mlx5: Fix mlx5pollone curqp update flow When curqp isn't NULL, in order to avoid fetching the QP from the radix tree again we check if the next cqe QP is identical to the one we already have. The bug however is that we are...

DEBIAN-CVE-2025-22020

In the Linux kernel, the following vulnerability has been resolved: memstick: rtsxusbms: Fix slab-use-after-free in rtsxusbmsdrvremove This fixes the following crash: ================================================================== BUG: KASAN: slab-use-after-free in rtsxusbmspollcard+0x159/0x20...

CVE-2025-3470

CVE-2025-3470 describes an authenticated SQL Injection in the WordPress plugin TS Poll – Survey, Versus Poll, Image Poll, Video Poll, affecting versions up to and including 2.4.6. The root cause is insufficient escaping of the user-supplied s parameter and inadequate preparation in the existing S...

CVE-2025-3470 TS Poll – Survey, Versus Poll, Image Poll, Video Poll <= 2.4.6 - Authenticated (Administrator+) SQL Injection via 's' Parameter

The TS Poll – Survey, Versus Poll, Image Poll, Video Poll plugin for WordPress is vulnerable to SQL Injection via the s parameter in all versions up to, and including, 2.4.6 due to insufficient escaping on the user supplied parameter and lack of sufficient preparation on the existing SQL query...

PT-2025-16282 · WordPress · Ts Poll – Survey

Name of the Vulnerable Software and Affected Versions: TS Poll – Survey, Versus Poll, Image Poll, Video Poll plugin for WordPress versions up to, and including, 2.4.6 Description: The issue concerns SQL Injection via the s parameter due to insufficient escaping on the user-supplied parameter and...

WordPress plugin TS Poll SQL注入漏洞

WordPress and WordPress plugin are both products of the WordPress Foundation.WordPress is a blogging platform developed using the PHP language. The platform supports setting up personal blog sites on servers with PHP and MySQL.WordPress plugin is an application plugin. A SQL injection vulnerabili...

Vulnerability of the xgbe_rx_poll() function in the drivers/net/ethernet/amd/xgbe/xgbe-drv.c module – This driver is a network adapter driver for AMD Ethernet in Linux kernels. It allows a hacker to cause a service failure.

Vulnerability of the xgberxpoll function in the drivers/net/ethernet/amd/xgbe/xgbe-drv.c module – The Ethernet adapter driver for Linux kernel is vulnerable due to buffer overflow exploits. Exploiting this vulnerability could allow an attacker to cause a system failure...

CVE-2025-32070

Improper Input Validation vulnerability in The Wikimedia Foundation Mediawiki - AJAX Poll Extension allows Cross-Site Scripting XSS.This issue affects Mediawiki - AJAX Poll Extension: from 1.39 through 1.43...

CVE-2025-32070

Improper Input Validation vulnerability in The Wikimedia Foundation Mediawiki - AJAX Poll Extension allows Cross-Site Scripting XSS.This issue affects Mediawiki - AJAX Poll Extension: from 1.39 through 1.43...

CVE-2025-32070

The CVE-2025-32070 entry concerns the MediaWiki AJAX Poll Extension, affected versions 1.39 through 1.43, with an underlying issue of improper input validation that enables Cross-Site Scripting (XSS) . Multiple connected sources confirm this as the root cause and impact. Practical consequence is ...

CVE-2025-32070 XSSes in AJAXPoll

Improper Input Validation vulnerability in The Wikimedia Foundation Mediawiki - AJAX Poll Extension allows Cross-Site Scripting XSS.This issue affects Mediawiki - AJAX Poll Extension: from 1.39 through 1.43...