Lucene search
K

9 matches found

EUVD
EUVD
added 2025/10/07 12:30 a.m.5 views

EUVD-2009-4709

Malware in sbrugna...

7.5CVSS6.4AI score0.00908EPSS
Exploits0References2
Prion
Prion
added 2010/03/26 8:30 p.m.12 views

Cross site scripting

Cross-site scripting XSS vulnerability in index.php in Dreamlevels DreamPoll 3.1 allows remote attackers to inject arbitrary web script or HTML via the recordsPerPage parameter in a polldefault login action...

4.3CVSS6.1AI score0.01214EPSS
Exploits0References1Affected Software1
NVD
NVD
added 2010/03/26 8:30 p.m.17 views

CVE-2009-4746

Cross-site scripting XSS vulnerability in index.php in Dreamlevels DreamPoll 3.1 allows remote attackers to inject arbitrary web script or HTML via the recordsPerPage parameter in a polldefault login action...

4.3CVSS5.7AI score0.01214EPSS
Exploits0References1
NVD
NVD
added 2010/03/26 8:30 p.m.15 views

CVE-2009-4745

Multiple SQL injection vulnerabilities in index.php in Dreamlevels DreamPoll 3.1 allow remote attackers to execute arbitrary SQL commands via the 1 sortField, 2 sortDesc, or 3 pageNumber parameter in a login action...

7.5CVSS8.5AI score0.00908EPSS
Exploits0References1
Cvelist
Cvelist
added 2010/03/26 8:0 p.m.21 views

CVE-2009-4745

Multiple SQL injection vulnerabilities in index.php in Dreamlevels DreamPoll 3.1 allow remote attackers to execute arbitrary SQL commands via the 1 sortField, 2 sortDesc, or 3 pageNumber parameter in a login action...

8.5AI score0.00908EPSS
Exploits0References1
Cvelist
Cvelist
added 2010/03/26 8:0 p.m.21 views

CVE-2009-4746

Cross-site scripting XSS vulnerability in index.php in Dreamlevels DreamPoll 3.1 allows remote attackers to inject arbitrary web script or HTML via the recordsPerPage parameter in a polldefault login action...

5.7AI score0.01214EPSS
Exploits0References1
CVE
CVE
added 2010/03/26 8:0 p.m.43 views

CVE-2009-4746

The CVE describes a Cross-site Scripting (XSS) vulnerability in Dreamlevels DreamPoll 3.1. Specifically, index.php is vulnerable via the recordsPerPage parameter in a poll_default login action, allowing remote attackers to inject arbitrary web script/HTML. Affected software: Dreamlevels DreamPoll...

4.3CVSS5.8AI score0.01214EPSS
Exploits0References1Affected Software1
CVE
CVE
added 2010/03/26 8:0 p.m.50 views

CVE-2009-4745

Dreamlevels DreamPoll 3.1 is affected by multiple SQL injection vulnerabilities in index.php. The issue allows an attacker to inject via the login action using one of three parameters: sortField, sortDesc, or pageNumber, enabling arbitrary SQL execution. The CVE entry is tracked with a base metri...

7.5CVSS8.7AI score0.00908EPSS
Exploits0References1Affected Software1
Cvelist
Cvelist
added 2005/12/15 11:0 a.m.19 views

CVE-2005-4254

SQL injection vulnerability in viewResults.php in DreamLevels DreamPoll 3.0 final allows remote attackers to execute arbitrary SQL commands via the id parameter...

8.4AI score0.01162EPSS
Exploits1References5
Rows per page
Query Builder