Multiple SQL injection vulnerabilities in CWPPoll.js in WordPress Poll Plugin 34.5 for WordPress allow attackers to execute arbitrary SQL commands via the pollid or poll_id parameter in a viewPollResults or userlogs action.
WordPress 6.5.x
Exploit
CVE-2013-1400
NVD
Refer to CVE-2013-1400 NVD advisory