CVE-2022-1456 Information

Description

The Poll Maker WordPress plugin before 4.0.2 does not sanitise and escape some settings which could allow high privilege users such as admin to perform Store Cross-Site Scripting attack even when unfiltered_html is disallowed

Reference

https://wpscan.com/vulnerability/1f41fc5c-18d0-493d-9a7d-8b521ab49f85