PT-2026-29310

Discourse is an open-source discussion platform. From versions 2026.1.0-latest to before 2026.1.3, 2026.2.0-latest to before 2026.2.2, and 2026.3.0-latest to before 2026.3.0, users who lost access to a topic e.g., removed from a private category group could still interact with polls in that topic...

EUVD-2022-24872

Malicious code in bioql PyPI...

CVE-2025-50025

Improper Neutralization of Input During Web Page Generation 'Cross-site Scripting' vulnerability in codepeople CP Polls cp-polls allows Stored XSS.This issue affects CP Polls: from n/a through = 1.0.81...

CVE-2025-46466

Cross-Site Request Forgery CSRF vulnerability in felixtz Modern Polls modern-polls allows Stored XSS.This issue affects Modern Polls: from n/a through = 1.0.10...

CVE-2022-1581

The WP-Polls WordPress plugin before 2.76.0 prioritizes getting a visitor's IP from certain HTTP headers over PHP's REMOTEADDR, which makes it possible to bypass IP-based limitations to vote in certain situations...

Discourse 安全漏洞

Discourse is an open source community discussion platform that includes community, email, and chat room features. The platform includes community, email, and chat room features.Discourse has a security vulnerability that stems from a lack of filtering in the Polls feature for single-option voting...

CVE-2006-6577

SQL injection vulnerability in polls.php in Neocrome Land Down Under LDU 8.x and earlier allows remote attackers to execute arbitrary SQL commands via the id parameter...

CVE-2006-6343

SQL injection vulnerability in polls.php in Neocrome Seditio 1.10 and earlier allows remote attackers to execute arbitrary SQL commands via the id parameter...