Lucene search

Polls Cp Security Vulnerabilities

cve

CVE-2014-10395

The cp-polls plugin before 1.0.1 for WordPress has XSS in the votes list.

6.1CVSS

6AI Score

0.001EPSS

2019-08-27 12:15 PM

cve

CVE-2014-125091

A vulnerability has been found in codepeople cp-polls Plugin 1.0.1 on WordPress and classified as critical. This vulnerability affects unknown code of the file cp-admin-int-message-list.inc.php. The manipulation of the argument lu leads to sql injection. The attack can be initiated remotely. Upgrad...

9.8CVSS

9.8AI Score

0.011EPSS

2023-03-04 10:15 PM

cve

CVE-2015-9346

The cp-polls plugin before 1.0.5 for WordPress has XSS.

6.1CVSS

6.4AI Score

0.001EPSS

2019-08-27 12:15 PM

cve

CVE-2022-3427

The Corner Ad plugin for WordPress is vulnerable to Cross-Site Request Forgery in versions up to, and including, 1.0.56. This is due to missing or incorrect nonce validation on its corner_ad_settings_page function. This makes it possible for unauthenticated attackers to trigger the deletion of ads ...

8.8CVSS

6.1AI Score

0.001EPSS

2022-12-15 07:15 PM

cve

CVE-2024-24873

: Improper Control of Interaction Frequency vulnerability in CodePeople CP Polls allows Flooding.This issue affects CP Polls: from n/a through 1.0.71.

5.3CVSS

6.8AI Score

0.0004EPSS

2024-05-17 09:15 AM

cve

CVE-2024-3632

The Smart Image Gallery WordPress plugin before 1.0.19 does not have CSRF check in place when updating its settings, which could allow attackers to make a logged in admin change them via a CSRF attack

6.8CVSS

6.4AI Score

0.0004EPSS

2024-07-13 06:15 AM