CVE-2018-15833

Name of the Vulnerable Software and Affected Versions Vanilla versions prior to 2.6.1

Description The issue allows for Insecure Direct Object Reference (IDOR) via the Poll ID, enabling a single user to select multiple Poll Options, such as voting for multiple items.

Recommendations For versions prior to 2.6.1, update to version 2.6.1 or later to resolve the issue.