Every CVE whose affected-product data names Bin-co Pollin, ordered by CVSS severity, with EPSS exploit prediction and CISA KEV status.
CVEs (2)
CVE-2024-13711 — CVSS 6.1 (medium): The Pollin plugin for WordPress is vulnerable to Reflected Cross-Site Scripting via the 'question' parameter in all versions up to, and…
CVE-2024-13712 — CVSS 4.9 (medium): The Pollin plugin for WordPress is vulnerable to SQL Injection via the 'question' parameter in all versions up to, and including, 1.01.1…