HIGH
Modalsurvey
CVE published 2026-05-10
CVE-2021-47941
CVE-2021-47941 describes an unauthenticated SQL injection flaw in the WordPress plugin Survey & Poll 1.5.7.3. According to the supplied CVE description and NVD metadata, an attacker can place malicious SQL in the wp_sap cookie parameter and cause the application to execute arbitrary queries against the WordPress database. That can expose sensitive content such as usernames, password material, and other co [truncated]