cleantalk
Vulnerabilities and Security Researches

TS Poll – Best Poll Plugin for WordPress, CVE-2020-11673

CVE, Research URL

CVE-2020-11673

Home page URL

Security reports for TS Poll – Best Poll Plugin for WordPress

Application

TS Poll – Best Poll Plugin for WordPress

Published on
Apr 13, 2020
Research Description
An issue was discovered in the Responsive Poll through 1.3.4 for Wordpress. It allows an unauthenticated user to manipulate polls, e.g., delete, clone, or view a hidden poll. This is due to the usage of the callback wp_ajax_nopriv function in Includes/Total-Soft-Poll-Ajax.php for sensitive operations.
Affected versions
Min -, max 1.5.9.
Status
vulnerable
Previous vulnerability researches
WP Poll Maker – Best WordPress Poll Plugin for Voting Contest (CVE-2024-31240) , Jun 07, 2024
WP Poll Maker – Best WordPress Poll Plugin for Voting Contest (CVE-2024-32514) , Jun 07, 2024
WP Poll Maker – Best WordPress Poll Plugin for Voting Contest (CVE-2024-29818) , Jun 07, 2024
TS Poll – Best Poll Plugin for WordPress (CVE-2020-11673) , Jun 07, 2024
TS Poll – Best Poll Plugin for WordPress (CVE-2025-3470) , Apr 16, 2025
New vulnerability
WP Logger (CVE-2025-39456) , Apr 20, 2025
visualslider Sldier (CVE-2025-23448) , Apr 20, 2025
RSS Manager (CVE-2025-39418) , Apr 20, 2025
Contact Form vCard Generator (CVE-2025-39521) , Apr 20, 2025
AdminQuickbar (CVE-2025-39464) , Apr 20, 2025