2 matches found
CVE-2010-5004
CVE-2010-5004 describes a SQL injection in searchvote.php of the 2daybiz Polls (Advanced Poll) Script, exploitable via the category parameter. Public sources (NVD/Red Hat PR/PRION/CVE lists) confirm the vulnerability and a CVSS v2 base score of 7.5 (HIGH) with network attack vector and no authent...
CVE-2010-5004
SQL injection vulnerability in searchvote.php in 2daybiz Polls aka Advanced Poll Script allows remote attackers to execute arbitrary SQL commands via the category parameter...