Poll Maker Security Vulnerabilities and Issues — Poll Maker CVE List

Lucene search

Ays-proPoll Maker

3 matches found

CVE•added 2022/05/30 9:15 a.m.•70 views

CVE-2022-1456

The Poll Maker WordPress plugin before 4.0.2 does not sanitise and escape some settings, which could allow high privilege users such as admin to perform Store Cross-Site Scripting attack even when unfiltered_html is disallowed

4.8CVSS4.8AI score0.00195EPSS

CVE•added 2025/03/16 6:15 a.m.•46 views

CVE-2024-13602

The Poll Maker WordPress plugin before 5.5.4 does not sanitise and escape some of its settings, which could allow high privilege users such as admin to perform Stored Cross-Site Scripting attacks even when the unfiltered_html capability is disallowed (for example in multisite setup).

4.8CVSS5.7AI score0.00056EPSS

CVE•added 2024/12/07 2:15 a.m.•42 views

CVE-2024-12115

The Poll Maker – Versus Polls, Anonymous Polls, Image Polls plugin for WordPress is vulnerable to Cross-Site Request Forgery in all versions up to, and including, 5.5.4. This is due to missing or incorrect nonce validation on the duplicate_poll() function. This makes it possible for unauthenticated...

4.3CVSS4.2AI score0.00014EPSS