RSS   Vulnerabilities for
'Poll\, survey\, questionnaire and voting system'
   RSS

2021-07-12
 
CVE-2021-24442

CWE-89
 

 
The Poll, Survey, Questionnaire and Voting system WordPress plugin before 1.5.3 did not sanitise, escape or validate the date_answers[] POST parameter before using it in a SQL statement when sending a Poll result, allowing unauthenticated users to perform SQL Injection attacks

 

 >>> Vendor: Wpdevart 10 Products
Gallery
Booking calendar
Responsive image gallery gallery album
Poll\, survey\, questionnaire and voting system
Youtube embed\, playlist and popup
Countdown and countup\, woocommerce sales timer
Coming soon and maintenance mode
Duplicate page or post
Pricing table builder
Social comments


Copyright 2024, cxsecurity.com

 

Back to Top