cleantalk
Vulnerabilities and Security Researches

Poll Maker – Best WordPress Poll Plugin, CVE-2022-1456

CVE, Research URL

CVE-2022-1456

Home page URL

Security reports for Poll Maker – Best WordPress Poll Plugin

Application

Poll Maker – Best WordPress Poll Plugin

Published on
May 30, 2022
Research Description
The Poll Maker WordPress plugin before 4.0.2 does not sanitise and escape some settings, which could allow high privilege users such as admin to perform Store Cross-Site Scripting attack even when unfiltered_html is disallowed
Affected versions
Min -, max 4.0.2.
Status
vulnerable
Previous vulnerability researches
Poll Maker – Best WordPress Poll Plugin (CVE-2023-50904) , Jun 10, 2024
Poll Maker – Best WordPress Poll Plugin (CVE-2024-56295) , Jan 17, 2025
Poll Maker – Best WordPress Poll Plugin (CVE-2024-9462) , Oct 27, 2024
Poll Maker – Best WordPress Poll Plugin (CVE-2024-9475) , Oct 27, 2024
Poll Maker – Best WordPress Poll Plugin (CVE-2024-56277) , Jan 23, 2025
New vulnerability
Vertical scroll slideshow gallery v2 (CVE-2025-49897) , Aug 18, 2025
ServerBuddy by PluginBuddy.com (CVE-2025-49895) , Aug 18, 2025
Event Manager, Events Calendar, Events Tickets for WooCommerce – Eventin (CVE-2025-49869) , Aug 18, 2025
EventON (CVE-2025-8091) , Aug 18, 2025
Add Custom Codes – Insert Header, Footer, Custom Code Snippets, Custom CSS, Javascript (CVE-2025-30975) , Aug 18, 2025