Primary

Context

WordPress Poll Maker Plugin Basic Information Exposure Vulnerability

Vulnerability

A vulnerability allowing basic information exposure has been identified in the Poll Maker – Versus Polls, Anonymous Polls, Image Polls plugin for WordPress. This issue affects all versions through 5.8.9 and arises from the 'ays_finish_poll' AJAX action. The vulnerability allows unauthenticated attackers to access admin email information, which is inadvertently revealed in the poll response.

Impact

Exploitation of this vulnerability leads to the unauthorized disclosure of admin email addresses.

Remediation

Users can update to version 5.9.0 or a newer patched version to address this vulnerability.

Added: Aug 16, 2025, 3:19 AM

Updated: Aug 16, 2025, 3:19 AM

Vulnerability Rating

Custom Algorithm

spread

0.0

impact

2.5

exploitability

8.1

remediation

7.7

relevance

0.4

threat

3.2

urgency

2.9

incentive

5.8

Our algorithm analyzes dozens of metrics to generate these 8 key vulnerability categories, which are then combined to calculate the overall risk score.

Vulnerability Rating

Custom Algorithm

spread

0.0

impact

2.5

exploitability

8.1

remediation

7.7

relevance

0.4

threat

3.2

urgency

2.9

incentive

5.8

Our algorithm analyzes dozens of metrics to generate these 8 key vulnerability categories, which are then combined to calculate the overall risk score.

WordPress Poll Maker Plugin Basic Information Exposure Vulnerability

Vulnerability

Impact

Remediation

Affected Products

CVSS Scores

References

Vulnerability Rating

Vulnerability Rating