Description
WordPress Plugin WP Survey Plus is prone to a security bypass vulnerability. Exploiting this issue may allow attackers to perform otherwise restricted actions and subsequently add/edit/delete surveys. WordPress Plugin WP Survey Plus version 1.0 is vulnerable.
Remediation
Disable and remove the plugin until a fix is available
References
Related Vulnerabilities
XOOPS Exposure of Sensitive Information to an Unauthorized Actor Vulnerability (CVE-2011-3822)
Atlassian Jira CVE-2020-14178 Vulnerability (CVE-2020-14178)
MediaWiki Incorrect Authorization Vulnerability (CVE-2023-22945)
Oracle Database Server CVE-2014-6538 Vulnerability (CVE-2014-6538)
WordPress Plugin BuddyBoss Media Cross-Site Scripting (3.0.3)