cve,link,title,description,vendor,products,score,severity,epss,cisa,cisa_published,article,ransomware,exploited,poc,trended,trended_no_1,published,trended_score
CVE-2024-3601,https://securityvulnerability.io/vulnerability/CVE-2024-3601,Unauthorized Access to Email Addresses via Missing Capability Check,"The Poll Maker – Best WordPress Poll Plugin plugin for WordPress is vulnerable to unauthorized access of data due to a missing capability check on the ays_poll_create_author function in all versions up to, and including, 5.1.8. This makes it possible for unauthenticated attackers to extract email addresses by enumerating them one character at a time.",Wordpress,Poll Maker – Best WordPress Poll Plugin,5.3,MEDIUM,0.0004299999854993075,false,,false,false,false,,false,false,2024-05-02T16:52:54.169Z,0
CVE-2024-3600,https://securityvulnerability.io/vulnerability/CVE-2024-3600,Poll Maker Vulnerable to Stored Cross-Site Scripting,"The Poll Maker – Best WordPress Poll Plugin plugin for WordPress exhibits a vulnerability to Stored Cross-Site Scripting (XSS) due to an absence of proper capability checks on the ays_poll_maker_quick_start AJAX action. Additionally, all versions up to and including 5.1.8 lack sufficient escaping and sanitization measures. This deficiency enables unauthenticated attackers to craft quizzes that can embed malicious scripts, which execute without user consent when a targeted individual visits the page, significantly increasing the risk of data theft and site compromise.",Wordpress,Poll Maker – Best WordPress Poll Plugin,7.2,HIGH,0.0004299999854993075,false,,false,false,false,,false,false,2024-04-19T02:34:44.234Z,0
CVE-2023-34013,https://securityvulnerability.io/vulnerability/CVE-2023-34013,WordPress Poll Maker Plugin <= 4.6.2 is vulnerable to Server Side Request Forgery (SSRF),"The Poll Maker – Best WordPress Poll Plugin is impacted by a Server-Side Request Forgery (SSRF) vulnerability that allows attackers to send unauthorized requests from the server, potentially exposing sensitive data or internal resources. This vulnerability affects versions up to 4.6.2, emphasizing the need for updates to secure the plugin effectively. Website administrators must ensure they are using a patched version to avoid exploitation and safeguard their environments.",Wordpress,Poll Maker – Best WordPress Poll Plugin,7.5,HIGH,0.0011399999493733048,false,,false,false,false,,false,false,2023-11-13T03:15:00.000Z,0