CVE-2013-1401

Name of the Vulnerable Software and Affected Versions: WordPress Poll Plugin version 34.5

Description: The issue concerns security bypass vulnerabilities in specific functions of the WordPress Poll Plugin, including editAnswer, deleteAnswer, addAnswer, and deletePoll. These vulnerabilities allow a remote attacker to perform unauthorized actions such as adding, editing, and deleting answers, as well as deleting polls.

Recommendations: For WordPress Poll Plugin version 34.5, consider disabling the editAnswer, deleteAnswer, addAnswer, and deletePoll functions as a temporary workaround until a patch is available. Restrict access to these functions to minimize the risk of exploitation. At the moment, there is no information about a newer version that contains a fix for this vulnerability.