Vulnerabilities > Cardozatechnologies > Wordpress Poll > 34.06

DATE CVE VULNERABILITY TITLE RISK
2020-02-13 CVE-2013-1400 SQL Injection vulnerability in Cardozatechnologies Wordpress Poll 34.05/34.06
Multiple SQL injection vulnerabilities in CWPPoll.js in WordPress Poll Plugin 34.5 for WordPress allow attackers to execute arbitrary SQL commands via the pollid or poll_id parameter in a viewPollResults or userlogs action.
network
low complexity
cardozatechnologies CWE-89
critical
 9.8
9.8