6 matches found
CVE-2008-7044
SQL injection vulnerability in admin/include/newpoll.php in AJ Square Free Polling Script AJPoll Database version allows remote attackers to execute arbitrary SQL commands via the ques parameter...
Authentication flaw
AJ Square Free Polling Script AJPoll allows remote attackers to bypass authentication and create new polls via a direct request to admin/include/newpoll.php, a different vector than CVE-2008-7045. NOTE: the provenance of this information is unknown; the details are obtained solely from third part...
Authentication flaw
AJ Square Free Polling Script AJPoll Database version allows remote attackers to bypass authentication and reset poll votes via a direct request to admin/resetvote.php...
CVE-2008-7046
The CVE-2008-7046 entry concerns AJ Square Free Polling Script (AJPoll). The vulnerability allows remote attackers to bypass authentication and create new polls via a direct request to admin/include/newpoll.php, a vector distinct from CVE-2008-7045. The description indicates an authentication byp...
CVE-2008-7044
SQL injection vulnerability in admin/include/newpoll.php in AJ Square Free Polling Script AJPoll Database version allows remote attackers to execute arbitrary SQL commands via the ques parameter...
CVE-2008-7044
A CVE for AJ Square Free Polling Script (AJPoll) Database exposes a SQL injection in admin/include/newpoll.php via the ques parameter. This allows remote attackers to execute arbitrary SQL commands, impacting confidentiality, integrity, and availability. No remediation details are provided in the...