Vulnerabilities > AYS PRO > Poll Maker > 4.6.5

DATE CVE VULNERABILITY TITLE RISK
2024-04-19 CVE-2024-3600 Cross-site Scripting vulnerability in Ays-Pro Poll Maker
The Poll Maker – Best WordPress Poll Plugin plugin for WordPress is vulnerable to Stored Cross-Site Scripting due to a missing capability check on the ays_poll_maker_quick_start AJAX action in addition to insufficient escaping and sanitization in all versions up to, and including, 5.1.8.
network
low complexity
ays-pro CWE-79
6.1
6.1
2023-09-25 CVE-2023-41871 Unspecified vulnerability in Ays-Pro Poll Maker
Unauth.
network
low complexity
ays-pro
6.1
6.1