Loading market data...
← Back to CVE feed

CVE-2016-20067

MEDIUM CVSS 4.3 View on NVD ↗

Description

WordPress CP Polls 1.0.8 contains a cross-site request forgery vulnerability that allows attackers to perform unauthorized actions on behalf of authenticated users. Attackers can craft malicious HTML pages that execute unwanted poll operations when administrators visit the page while logged in.

CVSS Vector

CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:N/I:L/A:N
Published: Jun 15, 2026 14:16 UTC Modified: Jun 15, 2026 20:50 UTC