cve,link,title,description,vendor,products,score,severity,epss,cisa,cisa_published,article,ransomware,exploited,poc,trended,trended_no_1,published,trended_score
CVE-2024-13426,https://securityvulnerability.io/vulnerability/CVE-2024-13426,SQL Injection Vulnerability in WP-Polls Plugin for WordPress,"The WP-Polls plugin for WordPress contains a vulnerability that enables SQL Injection through COOKIE manipulation. This issue arises from inadequate escaping of user-supplied parameters and poorly prepared SQL queries. Attackers, without needing authentication, can insert additional SQL queries into existing ones. While the results are not visible to the attacker, an appropriately crafted payload may allow for the injection of malicious JavaScript, leading to Stored Cross-Site Scripting risks, thereby compromising the integrity of affected sites.",Wordpress,WP-polls,5.3,MEDIUM,0.0008200000156648457,false,,false,false,false,false,false,false,2025-01-22T02:20:24.893Z,0
CVE-2022-1581,https://securityvulnerability.io/vulnerability/CVE-2022-1581,WP-Polls < 2.76.0 - IP Validation Bypass,"The WP-Polls WordPress plugin before 2.76.0 prioritizes getting a visitor's IP from certain HTTP headers over PHP's REMOTE_ADDR, which makes it possible to bypass IP-based limitations to vote in certain situations.",Wordpress,WP-polls,5.3,MEDIUM,0.0007600000244565308,false,,false,false,false,,false,false,2022-11-21T00:00:00.000Z,0
CVE-2022-40130,https://securityvulnerability.io/vulnerability/CVE-2022-40130,WordPress WP-Polls plugin <= 2.76.0 - Auth. Race Condition vulnerability,Auth. (subscriber+) Race Condition vulnerability in WP-Polls plugin <= 2.76.0 on WordPress.,Wordpress,WP-polls (WordPress Plugin),4.3,MEDIUM,0.0005000000237487257,false,,false,false,false,,false,false,2022-11-18T23:15:00.000Z,0
CVE-2015-9352,https://securityvulnerability.io/vulnerability/CVE-2015-9352,,The wp-polls plugin before 2.72 for WordPress has SQL injection.,Wordpress,WP-polls,9.8,CRITICAL,0.0013800000306218863,false,,false,false,false,,false,false,2019-08-27T12:05:41.000Z,0
CVE-2016-10936,https://securityvulnerability.io/vulnerability/CVE-2016-10936,,The wp-polls plugin before 2.73.1 for WordPress has XSS via the Poll bar option.,Wordpress,WP-polls,6.1,MEDIUM,0.0006900000153109431,false,,false,false,false,,false,false,2019-08-27T12:04:29.000Z,0