GHSA-g6fm-r287-xjqjMediumCVSS 4.3

WordPress CP Polls 1.0.8 contains a cross-site request forgery vulnerability that allows...

Published
June 15, 2026
Last Modified
June 15, 2026

🔗 CVE IDs covered (1)

📋 Description

WordPress CP Polls 1.0.8 contains a cross-site request forgery vulnerability that allows attackers to perform unauthorized actions on behalf of authenticated users. Attackers can craft malicious HTML pages that execute unwanted poll operations when administrators visit the page while logged in.

🔗 References (4)