WordPress Plugin Vulnerabilities

Sodahead Polls < 2.0.4 - XSS

Description

The SodaHead Polls WordPress plugin was affected by a XSS security vulnerability.

Affects Plugins

Plugin icon
sodahead-polls
Fixed in 2.0.4

References

CVE
CVE-2011-5304
URL
https://www.immuniweb.com/advisory/HTB22893
URL
https://www.immuniweb.com/advisory/HTB22894

Classification

Type
XSS
OWASP top 10
A7: Cross-Site Scripting (XSS)
CWE
CWE-79

Miscellaneous

Verified
No
WPVDB ID
9446ecce-d6d4-4798-8def-6b9b8995a0b6

Timeline

Publicly Published
2011-03-17 (about 15 years ago)
Added
2019-08-21 (about 6 years ago)
Last Updated
2019-11-27 (about 6 years ago)

Other

Published
Title
Published
2022-05-26
Title
Image Slider by NextCode <= 1.1.2 - Author+ Stored Cross-Site Scripting
Published
2024-05-06
Title
Configure Login Timeout <= 1.0 - Authenticated (Administrator+) Stored Cross-Site Scripting
Published
2024-08-01
Title
Spectra Pro < 1.1.5 - Authenticated (Contributor+) Stored Cross-Site Scripting via Block IDs
Published
2024-08-07
Title
Spectra – WordPress Gutenberg Blocks < 2.15.1 - Authenticated (Contributor+) Stored Cross-site Scripting
Published
2024-02-19
Title
ProfilePress < 4.15.0 - Unauthenticated Stored XSS