Vulnerabilities > Cardozatechnologies > Wordpress Poll > 34.05
DATE | CVE | VULNERABILITY TITLE | RISK |
---|---|---|---|
2020-02-13 | CVE-2013-1401 | SQL Injection vulnerability in Cardozatechnologies Wordpress Poll 34.05 Multiple security bypass vulnerabilities in the editAnswer, deleteAnswer, addAnswer, and deletePoll functions in WordPress Poll Plugin 34.5 for WordPress allow a remote attacker to add, edit, and delete an answer and delete a poll. | 7.5 |
2020-02-13 | CVE-2013-1400 | SQL Injection vulnerability in Cardozatechnologies Wordpress Poll 34.05/34.06 Multiple SQL injection vulnerabilities in CWPPoll.js in WordPress Poll Plugin 34.5 for WordPress allow attackers to execute arbitrary SQL commands via the pollid or poll_id parameter in a viewPollResults or userlogs action. | 7.5 |