CVE-2025-49044 Information

Description

Cross-Site Request Forgery (CSRF) vulnerability in tosend.it Simple Poll allows Stored XSS. This issue affects Simple Poll: from n/a through 1.1.1.

Reference

https://patchstack.com/database/wordpress/plugin/simple-poll/vulnerability/wordpress-simple-poll-plugin-1-1-1-cross-site-request-forgery-csrf-to-stored-xss-vulnerability?_s_id=cve

Related CNNVD

CNNVD-202508-1545 (Published: 2025-08-14)