cleantalk
Vulnerabilities and Security Researches

WordPress Survey & Poll – Quiz, Survey and Poll Plugin for WordPress, CVE-2021-47941

CVE, Research URL

CVE-2021-47941

Home page URL

Security reports for WordPress Survey & Poll – Quiz, Survey and Poll Plugin for WordPress

Application

WordPress Survey & Poll – Quiz, Survey and Poll Plugin for WordPress

Published on
May 10, 2026
Research Description
WordPress Plugin Survey & Poll 1.5.7.3 contains an SQL injection vulnerability that allows unauthenticated attackers to execute arbitrary SQL queries by injecting malicious code through the wp_sap cookie parameter. Attackers can craft SQL payloads in the cookie to extract sensitive database information including usernames, passwords, and other confidential data from the WordPress database.
Affected versions
max 1.5.7.3.
Status
vulnerable
Previous vulnerability researches
WP SEO Structured Data Schema (CVE-2026-3604) , May 13, 2026
WP SEO Structured Data Schema (CVE-2025-4127) , May 09, 2025
New vulnerability
WordPress Affiliates Plugin — SliceWP Affiliates (CVE-2026-42653) , May 13, 2026
Advanced Custom Fields: Extended (CVE-2025-15463) , May 13, 2026
WP Google Maps Integration (CVE-2026-7464) , May 13, 2026
MonsterInsights – Google Analytics Dashboard for WordPress (Website Stats Made Easy) (CVE-2026-5371) , May 13, 2026
bunny.net – WordPress CDN Plugin (CVE-2025-68049) , May 13, 2026