cleantalk
Vulnerabilities and Security Researches

Poll, Survey & Quiz Maker Plugin by Opinion Stage, 3d0ae7c9e1e9811cf890b95ab03d79d54d32efe6

CVE, Research URL

3d0ae7c9e1e9811cf890b95ab03d79d54d32efe6

Home page URL

Security reports for Poll, Survey & Quiz Maker Plugin by Opinion Stage

Application

Poll, Survey & Quiz Maker Plugin by Opinion Stage

Published on
Sep 16, 2019
Research Description
Poll, Survey &amp; Quiz Maker Plugin by Opinion Stage [social-polls-by-opinionstage] < 19.6.25 Poll, Survey & Quiz Maker Plugin by Opinion Stage <= 19.6.24 - Unauthenticated Stored Cross-Site Scripting The Poll, Survey & Quiz Maker Plugin by Opinion Stage plugin for WordPress is vulnerable to Stored Cross-Site Scripting via several parameters in versions up to, and including, 19.6.24 due to insufficient input sanitization and output escaping. This makes it possible for unauthenticated attackers to inject arbitrary web scripts in pages that will execute whenever a user accesses an injected page.
Affected versions
Min -, max 19.6.25.
Status
vulnerable
Previous vulnerability researches
Poll, Survey &amp; Quiz Maker Plugin by Opinion Stage (CVE-2025-3880) , Jun 18, 2025
Poll, Survey &amp; Quiz Maker Plugin by Opinion Stage (3d0ae7c9e1e9811cf890b95ab03d79d54d32efe6) , Jun 07, 2024
New vulnerability
Wise Chat (CVE-2025-3774) , Jun 18, 2025
WPAdverts &#8211; Classifieds Plugin (CVE-2025-49878) , Jun 18, 2025
Brid Video Easy Publish (CVE-2025-5237) , Jun 18, 2025
YITH PayPal Express Checkout for WooCommerce (CVE-2025-48111) , Jun 18, 2025
WordPress Infinite Scroll &#8211; Ajax Load More (CVE-2025-4775) , Jun 18, 2025