Vulnerabilities > YOP Poll > YOP Poll > 6.3.0
DATE | CVE | VULNERABILITY TITLE | RISK |
---|---|---|---|
2023-11-14 | CVE-2023-6109 | Race Condition vulnerability in Yop-Poll YOP Poll The YOP Poll plugin for WordPress is vulnerable to a race condition in all versions up to, and including, 6.5.26. | 3.7 |
2021-11-17 | CVE-2021-24833 | Cross-site Scripting vulnerability in Yop-Poll YOP Poll The YOP Poll WordPress plugin before 6.3.1 is affected by a stored Cross-Site Scripting vulnerability, which exists in the Admin preview module where a user with a role as low as author is allowed to execute arbitrary script code within the context of the application. | 3.5 |
2021-11-17 | CVE-2021-24834 | Cross-site Scripting vulnerability in Yop-Poll YOP Poll The YOP Poll WordPress plugin before 6.3.1 is affected by a stored Cross-Site Scripting vulnerability which exists in the Create Poll - Options module where a user with a role as low as author is allowed to execute arbitrary script code within the context of the application. | 4.3 |