RSS   Vulnerabilities for 'Wordpress poll'   RSS

2020-02-13
 
CVE-2013-1401

CWE-89
 

 
Multiple security bypass vulnerabilities in the editAnswer, deleteAnswer, addAnswer, and deletePoll functions in WordPress Poll Plugin 34.5 for WordPress allow a remote attacker to add, edit, and delete an answer and delete a poll.

 
 
CVE-2013-1400

CWE-89
 

 
Multiple SQL injection vulnerabilities in CWPPoll.js in WordPress Poll Plugin 34.5 for WordPress allow attackers to execute arbitrary SQL commands via the pollid or poll_id parameter in a viewPollResults or userlogs action.

 


Copyright 2024, cxsecurity.com

 

Back to Top