3 matches found
Cross site scripting
Cross-site scripting XSS vulnerability in misc/getadmin.php in Advanced Poll 2.08 allows remote attackers to inject arbitrary web script or HTML via the mysqlhost parameter...
CVE-2010-2003
The CVE-2010-2003 issue affects Advanced Poll 2.08, specifically the misc/get_admin.php script. A sanitation flaw in the mysql_host parameter enables cross-site scripting (XSS), allowing an attacker to inject arbitrary HTML/JavaScript into a victim’s browser. Exploitation details in HTBridge advi...
Advanced Poll 2.0 - mysql_host Cross-Site Scripting
Advanced Poll 2.0 - mysqlhost Cross-Site Scripting source: https://www.securityfocus.com/bid/40045/info Advanced Poll is prone to a cross-site scripting vulnerability because the application fails to sufficiently sanitize user-supplied input. An attacker may leverage this issue to execute arbitra...