Sql injection

Eval injection vulnerability in pollframe.php in Vote! Pro 4.0, and possibly other scripts, allows remote attackers to execute arbitrary code via the pollid parameter, which is supplied to an eval function call, a different vulnerability type than CVE-2005-4632...

CVE-2007-0504

Eval injection vulnerability in pollframe.php in Vote! Pro 4.0, and possibly other scripts, allows remote attackers to execute arbitrary code via the pollid parameter, which is supplied to an eval function call, a different vulnerability type than CVE-2005-4632...

CVE-2007-0504

CVE-2007-0504 is an eval-injection vulnerability in Vote! Pro 4.0 (poll_frame.php and possibly other scripts). It allows remote attackers to execute arbitrary code by supplying a malicious poll_id that is passed to an eval() call. Descriptions from connected records confirm the poll_id/eval vecto...

Vote-Pro 4.0 (poll_frame.php poll_id) Remote Code Execution Exploit

Exploit for unknown platform in category web applications =================================================================== Vote-Pro 4.0 pollframe.php pollid Remote Code Execution Exploit =================================================================== r0ut3r Presents... Another r0ut3r...

Vote-Pro 4.0 - 'poll_frame.php?poll_id' Remote Code Execution

r0ut3r Presents... Another r0ut3r discovery! writ3r at gmail.com Vote-Pro Code Injection 0day Exploit Software: Vote-Pro 4.0 Vendor: http://www.vote-pro.com/ Released: 2007/01/23 Discovered & Exploit By: r0ut3r writ3r at gmail.com...

CVE-2005-4632

CVE-2005-4632 describes a SQL injection in poll_frame.php affecting Vote! Pro 4.0 and earlier. The vulnerability arises through the poll_id parameter, enabling remote attackers to issue arbitrary SQL commands. The connected documents corroborate the same advisory detail across multiple sources (C...

CVE-2005-4632

SQL injection vulnerability in pollframe.php in Vote! Pro 4.0 and earlier allows remote attackers to execute arbitrary SQL commands via the pollid parameter...