[{"data":1,"prerenderedAt":-1},["ShallowReactive",2],{"$fpEtWfC_oT3bMzJQUYhYhf0lcZgn4vaJpVabY0VpMSY4":3},{"id":4,"url_slug":5,"title":6,"description":7,"plugin_slug":8,"theme_slug":9,"affected_versions":10,"patched_in_version":11,"severity":12,"cvss_score":13,"cvss_vector":14,"vuln_type":15,"published_date":16,"updated_date":17,"references":18,"days_to_patch":20},"CVE-2024-56277","poll-maker-versus-polls-anonymous-polls-image-polls-unauthenticated-html-injection","Poll Maker – Versus Polls, Anonymous Polls, Image Polls \u003C= 5.5.4 - Unauthenticated HTML Injection","The Poll Maker – Versus Polls, Anonymous Polls, Image Polls plugin for WordPress is vulnerable to HTML Injection in all versions up to, and including, 5.5.4. This is due to the software not properly sanitizing or escaping data added to polls. This makes it possible for unauthenticated attackers to inject HTML elements.","poll-maker",null,"\u003C=5.5.4","5.5.5","medium",5.3,"CVSS:3.1\u002FAV:N\u002FAC:L\u002FPR:N\u002FUI:N\u002FS:U\u002FC:N\u002FI:L\u002FA:N","Improper Encoding or Escaping of Output","2025-01-03 00:00:00","2025-02-14 15:21:03",[19],"https:\u002F\u002Fwww.wordfence.com\u002Fthreat-intel\u002Fvulnerabilities\u002Fid\u002Fe36056bf-4e90-4c5e-8c6a-ab3ae7ba426f?source=api-prod",43]