Filtered by vendor Dmytropopov Subscriptions
Total 2 CVE
CVE Vendors Products Updated CVSS v3.1
CVE-2024-6720 1 Dmytropopov 1 Light Poll 2024-08-07 8.8 High
The Light Poll WordPress plugin through 1.0.0 does not have CSRF checks in some places, which could allow attackers to make logged in users perform unwanted actions via CSRF attacks
CVE-2024-6496 1 Dmytropopov 1 Light Poll 2024-08-07 6.5 Medium
The Light Poll WordPress plugin through 1.0.0 does not have CSRF checks when deleting polls, which could allow attackers to make logged in users perform such action via a CSRF attack