Vulnerabilities and security researches fortotalpoll-lite totalpoll-lite
Direction: descendingMar 30, 2026
Poll | Vote | Contest – Best Poll Plugin for WordPress # CVE-2026-27044
- CVE, Research URL
- Date
- Mar 25, 2026
- Research Description
- Improper Control of Generation of Code ('Code Injection') vulnerability in TotalSuite Total Poll Lite totalpoll-lite allows Remote Code Inclusion.This issue affects Total Poll Lite: from n/a through <= 4.12.0.
- Affected versions
-
max 4.12.0.
- Status
-
vulnerable
Jun 10, 2024
Poll | Vote | Contest – Best Poll Plugin for WordPress # CVE-2023-27449
- CVE, Research URL
- Date
- Dec 09, 2024
- Research Description
- Missing Authorization vulnerability in TotalSuite Total Poll Lite allows Exploiting Incorrectly Configured Access Control Security Levels.This issue affects Total Poll Lite: from n/a through 4.8.6.
- Affected versions
-
max 4.8.7.
- Status
-
vulnerable
Jun 06, 2024
Poll | Vote | Contest – Best Poll Plugin for WordPress # CVE-2024-32821
- CVE, Research URL
- Date
- Jun 09, 2024
- Research Description
- Missing Authorization vulnerability in TotalSuite Total Poll Lite.This issue affects Total Poll Lite: from n/a through 4.9.9.
- Affected versions
-
max 4.10.0.
- Status
-
vulnerable
Poll | Vote | Contest – Best Poll Plugin for WordPress # 57b7235425fb65b5f41eeba0f252abfd94c317e1
- CVE, Research URL
- Date
- Mar 03, 2023
- Research Description
- Poll | Vote | Contest – Best Poll Plugin for WordPress [totalpoll-lite] < 4.8.7 WordPress Total Poll Lite Plugin <= 4.8.6 is vulnerable to Broken Access Control Update the WordPress Total Poll Lite plugin to the latest available version (at least 4.8.7). Mika discovered and reported this Broken Access Control vulnerability in WordPress Total Poll Lite Plugin. This vulnerability has been fixed in version 4.8.7.
- Affected versions
-
max 4.8.7.
- Status
-
vulnerable