cleantalk
Vulnerabilities and Security Researches

Poll Maker – Best WordPress Poll Plugin, CVE-2025-57954

CVE, Research URL

CVE-2025-57954

Home page URL

Security reports for Poll Maker – Best WordPress Poll Plugin

Application

Poll Maker – Best WordPress Poll Plugin

Published on
Sep 23, 2025
Research Description
Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') vulnerability in Ays Pro Poll Maker poll-maker allows DOM-Based XSS.This issue affects Poll Maker: from n/a through <= 6.0.2.
Affected versions
max 6.0.3.
Status
vulnerable
Previous vulnerability researches
Portfolio and Projects (CVE-2024-13847) , Mar 15, 2025
Portfolio and Projects (1e5ab0d376bb286eb9f3c02b0bc3818f419fb17d) , Jun 07, 2024
Portfolio and Projects (CVE-2023-39995) , Jun 10, 2024
Portfolio and Projects (CVE-2025-67470) , Dec 11, 2025
Portfolio and Projects (CVE-2026-6443) , Apr 23, 2026
New vulnerability
Portfolio &amp; Image Gallery for WordPress | PowerFolio (CVE-2025-57932) , Apr 24, 2026
Bold Page Builder (CVE-2025-7730) , Apr 24, 2026
Flexi &#8211; Guest Submit (CVE-2025-9129) , Apr 24, 2026
Maps for WP (CVE-2025-57952) , Apr 24, 2026
Poll Maker &#8211; Best WordPress Poll Plugin (CVE-2025-57954) , Apr 24, 2026