WordPress Plugin Vulnerabilities

Polldaddy Polls & Ratings 2.0.20 - Cross-Site Request Forgery

Description

The Crowdsignal Polls & Ratings WordPress plugin was affected by a Cross-Site Request Forgery security vulnerability.

Affects Plugins

Plugin icon
polldaddy
Fixed in 2.0.21

References

Classification

Type
CSRF
OWASP top 10
A2: Broken Authentication and Session Management
CWE
CWE-352

Miscellaneous

Verified
No
WPVDB ID
c4f5b447-b1ba-46bc-bbf8-dec97e2dbec6

Timeline

Publicly Published
2014-08-01 (about 11 years ago)
Added
2014-08-01 (about 11 years ago)
Last Updated
2019-10-21 (about 6 years ago)

Other

Published
Title
Published
2025-09-22
Title
Dashboard Notepad <= 1.42 - Cross-Site Request Forgery
Published
2025-09-05
Title
AP HoneyPot WordPress Plugin <= 1.4 - Cross-Site Request Forgery
Published
2025-03-27
Title
publish post email notification < 1.0.2.4 - Cross-Site Request Forgery
Published
2024-07-11
Title
WooCommerce Customers Manager < 30.1 - User Deletion via CSRF
Published
2025-02-27
Title
Cardealer < 1.6.5 - Cross-Site Request Forgery to User Update via update_user_profile