CVE-2021-24801
The CVE CVE-2021-24801 affects the WordPress plugin WP Survey Plus up to version 1.0 . The vulnerability arises from missing authorization checks and absent CSRF protections in the plugin’s AJAX actions, allowing any user to call the actions to add/edit/delete surveys . Additionally, inadequate s...