cleantalk
Vulnerabilities and Security Researches

WordPress Survey & Poll – Quiz, Survey and Poll Plugin for WordPress, CVE-2021-47941

CVE, Research URL

CVE-2021-47941

Home page URL

Security reports for WordPress Survey & Poll – Quiz, Survey and Poll Plugin for WordPress

Application

WordPress Survey & Poll – Quiz, Survey and Poll Plugin for WordPress

Published on
May 10, 2026
Research Description
WordPress Plugin Survey & Poll 1.5.7.3 contains an SQL injection vulnerability that allows unauthenticated attackers to execute arbitrary SQL queries by injecting malicious code through the wp_sap cookie parameter. Attackers can craft SQL payloads in the cookie to extract sensitive database information including usernames, passwords, and other confidential data from the WordPress database.
Affected versions
max 1.5.7.3.
Status
vulnerable
Previous vulnerability researches
WordPress Survey & Poll – Quiz, Survey and Poll Plugin for WordPress (CVE-2021-47941) , May 13, 2026
WordPress Survey & Poll – Quiz, Survey and Poll Plugin for WordPress (CVE-2015-2090) , Jun 06, 2024
WordPress Survey & Poll – Quiz, Survey and Poll Plugin for WordPress (CVE-2024-12528) , Jan 08, 2025
WordPress Survey & Poll – Quiz, Survey and Poll Plugin for WordPress (CVE-2024-13596) , Feb 01, 2025
New vulnerability
bunny.net – WordPress CDN Plugin (CVE-2025-68049) , May 13, 2026
BJ Lazy Load (CVE-2026-2300) , May 13, 2026
WordPress Survey & Poll – Quiz, Survey and Poll Plugin for WordPress (CVE-2021-47941) , May 13, 2026
WP SEO Structured Data Schema (CVE-2026-3604) , May 13, 2026
WP Data Access (CVE-2026-42665) , May 13, 2026