EUVD-2006-2236

Malware in sbrugna...

EUVD-2025-24756

Malicious code in bioql PyPI...

CVE-2025-49044

Cross-Site Request Forgery CSRF vulnerability in tosend.it Simple Poll simple-poll allows Stored XSS.This issue affects Simple Poll: from n/a through = 1.1.1...

CVE-2025-49044

CVE-2025-49044 is a CSRF-to-Stored XSS vulnerability in the WordPress Simple Poll plugin prior to or up to version 1.1.1. The issue affects Simple Poll by Tosend.it and is documented with CVSS v3.1 base score 7.1 (HIGH) with network attack vector, low attack complexity, no privileges required, us...

CVE-2025-49044 WordPress Simple Poll plugin <= 1.1.1 - Cross Site Request Forgery (CSRF) to Stored XSS vulnerability

Cross-Site Request Forgery CSRF vulnerability in tosend.it Simple Poll simple-poll allows Stored XSS.This issue affects Simple Poll: from n/a through = 1.1.1...

CVE-2025-49044 WordPress Simple Poll plugin <= 1.1.1 - Cross Site Request Forgery (CSRF) to Stored XSS vulnerability

Cross-Site Request Forgery CSRF vulnerability in tosend.it Simple Poll simple-poll allows Stored XSS.This issue affects Simple Poll: from n/a through = 1.1.1...

WordPress Simple Poll plugin <= 1.1.1 - Cross Site Request Forgery (CSRF) to Stored XSS vulnerability

Cross Site Request Forgery CSRF to Stored XSS vulnerability discovered by TAKERU OTSUKA Patchstack Alliance in WordPress Plugin Simple Poll versions = 1.1.1...

WordPress plugin Simple Poll 请求伪造漏洞

WordPress and WordPress plugin are both products of the WordPress Foundation.WordPress is a blogging platform developed using the PHP language. The platform supports setting up personal blog sites on servers with PHP and MySQL.WordPress plugin is an application plugin. A cross-site request forger...

PT-2025-33179 · Unknown · Tosend.It Simple Poll

Name of the Vulnerable Software and Affected Versions: tosend.it Simple Poll versions through 1.1.1 Description: A Cross-Site Request Forgery CSRF vulnerability exists in tosend.it Simple Poll, which also allows Stored Cross-Site Scripting XSS. Recommendations: At the moment, there is no...

CVE-2006-2235

CodeMunkyX aka free-php.net Simple Poll 1.0, when authentication is not required for the admin directory, allows remote attackers to gain administrative privileges by appending /admin/ to the top-level URI of the application...

Authentication flaw

CodeMunkyX aka free-php.net Simple Poll 1.0, when authentication is not required for the admin directory, allows remote attackers to gain administrative privileges by appending /admin/ to the top-level URI of the application...

CVE-2006-2235

CodeMunkyX aka free-php.net Simple Poll 1.0, when authentication is not required for the admin directory, allows remote attackers to gain administrative privileges by appending /admin/ to the top-level URI of the application...

CVE-2006-2235

CVE-2006-2235 affects CodeMunkyX (free-php.net) Simple Poll 1.0. The root cause is missing authentication for the admin directory, allowing remote attackers to gain administrative privileges by appending "/admin/" to the top-level URI. The vulnerability is network-exploitable with high complexity...