WordPress Plugin Vulnerabilities

CP Polls < 1.0.5 - XSS

Description

The Polls CP WordPress plugin was affected by a XSS security vulnerability.

Affects Plugins

Plugin icon
cp-polls
Fixed in 1.0.5

References

CVE
CVE-2015-9346

Classification

Type
XSS
OWASP top 10
A7: Cross-Site Scripting (XSS)
CWE
CWE-79
CVSS
6.1 (medium)

Miscellaneous

Verified
No
WPVDB ID
b183e2ff-4776-493b-b15a-f469dd12b456

Timeline

Publicly Published
2015-05-20 (about 10 years ago)
Added
2019-08-27 (about 6 years ago)
Last Updated
2020-09-22 (about 5 years ago)

Other

Published
Title
Published
2019-07-09
Title
Gallery Photoblocks < 1.1.43 - Authenticated Reflected XSS
Published
2025-09-26
Title
User Notes < 1.0.3 - Admin+ Stored XSS
Published
2025-03-27
Title
xili-dictionary < 2.12.5.1 - Reflected Cross-Site Scripting
Published
2024-04-25
Title
Piotnet Addons For Elementor Pro <= 7.1.17 - Reflected Cross-Site Scripting
Published
2020-11-12
Title
Love Travel 2.0-3.8 - Unauthenticated Reflected XSS & XFS