CVE-2006-2131
The CVE-2006-2131 entry concerns Advanced Poll 2.0.4, where include/class_poll.php uses the HTTP_X_FORWARDED_FOR header to identify the client IP. The root cause is relying on X-Forwarded-For for IP checks, which allows remote attackers to spoof the source IP and bypass voting restrictions. The a...