The vulnerability of the Admin preview module of the YOP Poll plugin in the WordPress content management system allows a hacker to compromise the privacy and integrity of the protected information.

The vulnerability of the Admin preview module of the YOP Poll plugin in the WordPress content management system exists due to the lack of protective measures for the website structure. Exploiting this vulnerability allows a malicious actor to compromise the confidentiality and integrity of the...

CVE-2021-24833 YOP Poll < 6.3.1 - Author+ Stored Cross-Site Scripting via Preview Module

The YOP Poll WordPress plugin before 6.3.1 is affected by a stored Cross-Site Scripting vulnerability, which exists in the Admin preview module where a user with a role as low as author is allowed to execute arbitrary script code within the context of the application. This vulnerability is due to...