CVE-2025-3880 – Opinion Stage WordPress Poll Survey Quiz Maker Plugin Unauthorized Data Modification Vulnerability

June 17, 2025

CVE ID : CVE-2025-3880

Published : June 17, 2025, 12:15 p.m. | 2 hours, 11 minutes ago

Description : The Poll, Survey & Quiz Maker Plugin by Opinion Stage plugin for WordPress is vulnerable to unauthorized modification of data due to a misconfigured capability check on several functions in all versions up to, and including, 19.9.0. This makes it possible for authenticated attackers, with Contributor-level access and above, to change the email address for the account connection, and disconnect the plugin. Previously created content will still be displayed and functional if the account is disconnected.

Severity: 4.3 | MEDIUM

Visit the link for more details, such as CVSS details, affected products, timeline, and more…

Source: Read More

Previous ArticleCVE-2025-5291 – Master Slider WordPress Stored Cross-Site Scripting Vulnerability

Next Article CVE-2025-6050 – Mezzanine CMS Stored Cross-Site Scripting (XSS) Vulnerability

Upwork Freelancers vs Dedicated React.js Teams: What’s Better for Your Project in 2025?

Is Agile dead in the age of AI?

Top 15 Enterprise Use Cases That Justify Hiring Node.js Developers in 2025

The Core Model: Start FROM The Answer, Not WITH The Solution

Finally, a sleek gaming laptop I can take to the office (without sacrificing power)

These jobs face the highest risk of AI takeover, according to Microsoft

Apple’s tariff costs and iPhone sales are soaring – how long until device prices are too?

5 ways to successfully integrate AI agents into your workplace

Enhancing Laravel Queries with Reusable Scope Patterns

Enhancing Laravel Queries with Reusable Scope Patterns

Everything We Know About Livewire 4

Everything We Know About Livewire 4

YouTube wants to use AI to treat “teens as teens and adults as adults” — with the most age-appropriate experiences and protections

YouTube wants to use AI to treat “teens as teens and adults as adults” — with the most age-appropriate experiences and protections

Sam Altman is afraid of OpenAI’s GPT-5 creation — “The Manhattan Project feels very fast, like there are no adults in the room”

9 new features that arrived on the Windows 11 Insider Program during the second half of July 2025

CVE-2025-3880 – Opinion Stage WordPress Poll Survey Quiz Maker Plugin Unauthorized Data Modification Vulnerability

This month in security with Tony Anscombe – July 2025 edition

WordPress AI Engine Plugin Bug Allows Remote Code Execution – Update Now

Windows 11 Build 27881 brings speech recap, profanity toggle, and smarter sharing

CVE-2025-26693 – OpenHarmony File Access Information Leak

CVE-2025-29662 – LandChat Remote Code Execution (RCE)

Lenovo’s $3,000 rollable ThinkBook laptop is officially available to buy – know this before you do

Google Launches DBSC Open Beta in Chrome and Enhances Patch Transparency via Project Zero

CVE-2025-6930 – PHPGurukul Zoo Management System SQL Injection Vulnerability

Rust compie 10 anni: storia di una rivoluzione che sta cambiando il mondo della programmazione di sistema

Distribution Release: Slackel 8.0 “Openbox”

CVE-2025-3880 – Opinion Stage WordPress Poll Survey Quiz Maker Plugin Unauthorized Data Modification Vulnerability

Related Posts