Crowdsignal Dashboard

crowdsignal_dashboard

Vendor: Automattic • 4 CVEs

CVEs (4)

CVE VENDORS PRODUCTS UPDATED PUBLISHED CVSS
CVE-2023-51489 1Automattic 1Crowdsignal Dashboard Apr 28, 2026 Mar 16, 2024 N/A· v4 8.8 HIGH· v3 N/A· v2 Cross-Site Request Forgery (CSRF) vulnerability in Automattic, Inc. Crowdsignal Dashboard – Polls, Surveys & more.This issue affects Crowdsignal Dashboard – Polls, Surveys & more: from n/a through 3.0.11.
CVE-2023-51488 1Automattic 1Crowdsignal Dashboard Apr 28, 2026 Feb 10, 2024 N/A· v4 6.1 MEDIUM· v3 N/A· v2 Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') vulnerability in Automattic, Inc. Crowdsignal Dashboard – Polls, Surveys & more allows Reflected XSS.This issue affects Crowdsignal Das...Show more Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') vulnerability in Automattic, Inc. Crowdsignal Dashboard – Polls, Surveys & more allows Reflected XSS.This issue affects Crowdsignal Dashboard – Polls, Surveys & more: from n/a through 3.0.11.Show less
CVE-2022-45069 1Automattic 1Crowdsignal Dashboard Nov 21, 2024 Nov 17, 2022 N/A· v4 8.8 HIGH· v3 N/A· v2 Auth. (contributor+) Privilege Escalation vulnerability in Crowdsignal Dashboard plugin <= 3.0.9 on WordPress.
CVE-2022-2386 1Automattic 1Crowdsignal Dashboard Nov 21, 2024 Aug 8, 2022 N/A· v4 6.1 MEDIUM· v3 N/A· v2 The Crowdsignal Dashboard WordPress plugin before 3.0.8 does not sanitise and escape a parameter before outputting it back in the page, leading to a Reflected Cross-Site Scripting