Lucene search
K

21 matches found

EUVD
EUVD
added 2025/10/07 12:30 a.m.4 views

EUVD-2009-4710

Malware in sbrugna...

4.3CVSS6.4AI score0.01214EPSS
Exploits0References2
EUVD
EUVD
added 2025/10/07 12:30 a.m.3 views

EUVD-2005-4249

Malware in sbrugna...

7.5CVSS6.4AI score0.01162EPSS
Exploits1References6
EUVD
EUVD
added 2025/10/07 12:30 a.m.4 views

EUVD-2009-4709

Malware in sbrugna...

7.5CVSS6.4AI score0.00908EPSS
Exploits0References2
NVD
NVD
added 2010/03/26 8:30 p.m.16 views

CVE-2009-4746

Cross-site scripting XSS vulnerability in index.php in Dreamlevels DreamPoll 3.1 allows remote attackers to inject arbitrary web script or HTML via the recordsPerPage parameter in a polldefault login action...

4.3CVSS5.7AI score0.01214EPSS
Exploits0References1
NVD
NVD
added 2010/03/26 8:30 p.m.13 views

CVE-2009-4745

Multiple SQL injection vulnerabilities in index.php in Dreamlevels DreamPoll 3.1 allow remote attackers to execute arbitrary SQL commands via the 1 sortField, 2 sortDesc, or 3 pageNumber parameter in a login action...

7.5CVSS8.5AI score0.00908EPSS
Exploits0References1
Prion
Prion
added 2010/03/26 8:30 p.m.12 views

Cross site scripting

Cross-site scripting XSS vulnerability in index.php in Dreamlevels DreamPoll 3.1 allows remote attackers to inject arbitrary web script or HTML via the recordsPerPage parameter in a polldefault login action...

4.3CVSS6.1AI score0.01214EPSS
Exploits0References1Affected Software1
Prion
Prion
added 2010/03/26 8:30 p.m.13 views

Sql injection

Multiple SQL injection vulnerabilities in index.php in Dreamlevels DreamPoll 3.1 allow remote attackers to execute arbitrary SQL commands via the 1 sortField, 2 sortDesc, or 3 pageNumber parameter in a login action...

7.5CVSS9.2AI score0.00908EPSS
Exploits0References1Affected Software1
Cvelist
Cvelist
added 2010/03/26 8:0 p.m.20 views

CVE-2009-4745

Multiple SQL injection vulnerabilities in index.php in Dreamlevels DreamPoll 3.1 allow remote attackers to execute arbitrary SQL commands via the 1 sortField, 2 sortDesc, or 3 pageNumber parameter in a login action...

8.5AI score0.00908EPSS
Exploits0References1
Cvelist
Cvelist
added 2010/03/26 8:0 p.m.20 views

CVE-2009-4746

Cross-site scripting XSS vulnerability in index.php in Dreamlevels DreamPoll 3.1 allows remote attackers to inject arbitrary web script or HTML via the recordsPerPage parameter in a polldefault login action...

5.7AI score0.01214EPSS
Exploits0References1
CVE
CVE
added 2010/03/26 8:0 p.m.50 views

CVE-2009-4745

Dreamlevels DreamPoll 3.1 is affected by multiple SQL injection vulnerabilities in index.php. The issue allows an attacker to inject via the login action using one of three parameters: sortField, sortDesc, or pageNumber, enabling arbitrary SQL execution. The CVE entry is tracked with a base metri...

7.5CVSS8.7AI score0.00908EPSS
Exploits0References1Affected Software1
CVE
CVE
added 2010/03/26 8:0 p.m.43 views

CVE-2009-4746

The CVE describes a Cross-site Scripting (XSS) vulnerability in Dreamlevels DreamPoll 3.1. Specifically, index.php is vulnerable via the recordsPerPage parameter in a poll_default login action, allowing remote attackers to inject arbitrary web script/HTML. Affected software: Dreamlevels DreamPoll...

4.3CVSS5.8AI score0.01214EPSS
Exploits0References1Affected Software1
securityvulns
securityvulns
added 2009/10/09 12:0 a.m.32 views

DreamPoll 3.1 Vulnerabilities

During a recent security audit of the DreamPoll 3.1 software by Dreamlevels, I discovered a number of XSS and SQL Injection vulnerabilities in the application. These vulnerabilities could be exploited to make unauthorized changes to a web site or compromise a client accessing a site that utilizes...

0.7AI score
Exploits0
Packet Storm
Packet Storm
added 2009/10/08 12:0 a.m.23 views

DreamPoll 3.1 SQL Injection / XSS

During a recent security audit of the DreamPoll 3.1 software by Dreamlevels, I discovered a number of XSS and SQL Injection vulnerabilities in the application. These vulnerabilities could be exploited to make unauthorized changes to a web site or compromise a client accessing a site that utilizes...

0.6AI score
Exploits0
seebug.org
seebug.org
added 2009/10/08 12:0 a.m.18 views

DreamPoll 3.1 Vulnerabilities

No description provided by source. During a recent security audit of the DreamPoll 3.1 software by Dreamlevels, I discovered a number of XSS and SQL Injection vulnerabilities in the application. These vulnerabilities could be exploited to make unauthorized changes to a web site or compromise a...

7.1AI score
Exploits0
0day.today
0day.today
added 2009/10/08 12:0 a.m.22 views

DreamPoll 3.1 Vulnerabilities

Exploit for unknown platform in category web applications ============================= DreamPoll 3.1 Vulnerabilities ============================= During a recent security audit of the DreamPoll 3.1 software by Dreamlevels, I discovered a number of XSS and SQL Injection vulnerabilities in the...

7.1AI score
Exploits0
exploitpack
exploitpack
added 2009/10/08 12:0 a.m.10 views

DreamPoll 3.1 - SQL Injection

DreamPoll 3.1 - SQL Injection During a recent security audit of the DreamPoll 3.1 software by Dreamlevels, I discovered a number of XSS and SQL Injection vulnerabilities in the application. These vulnerabilities could be exploited to make unauthorized changes to a web site or compromise a client...

0.3AI score
Exploits0
Exploit DB
Exploit DB
added 2009/10/08 12:0 a.m.28 views

DreamPoll 3.1 - SQL Injection

During a recent security audit of the DreamPoll 3.1 software by Dreamlevels, I discovered a number of XSS and SQL Injection vulnerabilities in the application. These vulnerabilities could be exploited to make unauthorized changes to a web site or compromise a client accessing a site that utilizes...

7.4AI score
Exploits0
NVD
NVD
added 2005/12/15 11:3 a.m.10 views

CVE-2005-4254

SQL injection vulnerability in viewResults.php in DreamLevels DreamPoll 3.0 final allows remote attackers to execute arbitrary SQL commands via the id parameter...

7.5CVSS8.4AI score0.01162EPSS
Exploits1References5
Cvelist
Cvelist
added 2005/12/15 11:0 a.m.18 views

CVE-2005-4254

SQL injection vulnerability in viewResults.php in DreamLevels DreamPoll 3.0 final allows remote attackers to execute arbitrary SQL commands via the id parameter...

8.4AI score0.01162EPSS
Exploits1References5
CVE
CVE
added 2005/12/15 11:0 a.m.30 views

CVE-2005-4254

DreamPoll 3.0 final (DreamLevels) contains a SQL injection vulnerability in view_Results.php, exploitable via the id parameter to execute arbitrary SQL. The issue is documented with a CVSS v2 base score of 7.5 (HIGH), affecting confidentiality, integrity, and availability (partial impact) with ne...

7.5CVSS8.8AI score0.01162EPSS
Exploits1References5Affected Software1
Rows per page
Query Builder