Lucene search

Polls Cp Security Vulnerabilities - February

cve

CVE-2014-10395

The cp-polls plugin before 1.0.1 for WordPress has XSS in the votes list.

6.1CVSS

6AI Score

0.001EPSS

2019-08-27 12:15 PM

cve

CVE-2014-125091

A vulnerability has been found in codepeople cp-polls Plugin 1.0.1 on WordPress and classified as critical. This vulnerability affects unknown code of the file cp-admin-int-message-list.inc.php. The manipulation of the argument lu leads to sql injection. The attack can be initiated remotely. Upgrad...

9.8CVSS

9.8AI Score

0.011EPSS

2023-03-04 10:15 PM

cve

CVE-2015-9346

The cp-polls plugin before 1.0.5 for WordPress has XSS.

6.1CVSS

6.4AI Score

0.001EPSS

2019-08-27 12:15 PM

cve

CVE-2023-41732

Cross-Site Request Forgery (CSRF) vulnerability in CodePeople CP Blocks plugin <= 1.0.20 versions.

8.8CVSS

8.8AI Score

0.001EPSS

2023-10-06 03:15 PM

cve

CVE-2024-3632

The Smart Image Gallery WordPress plugin before 1.0.19 does not have CSRF check in place when updating its settings, which could allow attackers to make a logged in admin change them via a CSRF attack

6.8CVSS

6.4AI Score

0.0004EPSS

2024-07-13 06:15 AM