18 matches found
EUVD-2015-9156
Malware in sbrugna...
EUVD-2006-5862
Malware in sbrugna...
EUVD-2007-0533
Malware in sbrugna...
EUVD-2005-4627
Malware in sbrugna...
CVE-2015-9316
The wp-fastest-cache plugin before 0.8.4.9 for WordPress has SQL injection in wp-admin/admin-ajax.php?action=wpfcwppollsajaxrequest via the pollid parameter...
Sql injection
Multiple SQL injection vulnerabilities in CWPPoll.js in WordPress Poll Plugin 34.5 for WordPress allow attackers to execute arbitrary SQL commands via the pollid or pollid parameter in a viewPollResults or userlogs action...
CVE-2015-9316
The wp-fastest-cache plugin before 0.8.4.9 for WordPress has SQL injection in wp-admin/admin-ajax.php?action=wpfcwppollsajaxrequest via the pollid parameter...
Cross site scripting
The yop-poll plugin before 6.0.3 for WordPress has wp-admin/admin.php?page=yop-polls&action=view-votes pollid XSS...
WordPress Plugin Sodahead Polls Has Multiple Cross-Site Scripting Vulnerabilities
WordPress is a blogging platform developed using the PHP language that allows users to set up their own weblogs on servers that support PHP and MySQL databases.Sodahead Polls plugin is a plugin for polls. WordPress plugin Sodahead Polls suffers from multiple cross-site scripting vulnerabilities...
SePortal staticpages SQL Injection (CVE-2008-5191)
An SQL injection vulnerability has been reported in SePortal. A remote attacker may exploit this issue by executing arbitrary SQL commands via the pollid parameter to pool.php and the spid parameter to staticpages.php. Successful exploitation could cause an SQL statement execution on the server,...
Sql injection
SQL injection vulnerability in public/code/cppollsresults.php in All In One Control Panel AIOCP 1.4 allows remote attackers to execute arbitrary SQL commands via the pollid parameter...
CVE-2008-2901
Multiple SQL injection vulnerabilities in Haudenschilt Family Connections CMS FCMS 1.4 allow remote authenticated users to execute arbitrary SQL commands via the 1 address parameter to addressbook.php, the 2 getnews parameter to familynews.php, and the 3 pollid parameter to home.php in a results...
SePortal 2.4 - 'poll_id' SQL Injection
Viva IslaM Viva IslaM Remote SQL Injection Vulnerability SePortal V2.4 poll.php pollid staticpages.php spid AuTh0r : Mr.SQL H0ME : WwW.PaL-HaCkEr.CoM & WwW.ATsDp.CoM Email : [email protected] !! SYRIAN HaCkErS !! Script : SePortal V2.4 site : www.seportal.org Download :...
Sql injection
SQL injection vulnerability in index.php in dream4 Koobi Pro 6.25 allows remote attackers to execute arbitrary SQL commands via the pollid parameter in a poll action...
CVE-2008-2036
SQL injection vulnerability in index.php in dream4 Koobi Pro 6.25 allows remote attackers to execute arbitrary SQL commands via the pollid parameter in a poll action...
EUVD-2007-0502
Eval injection vulnerability in pollframe.php in Vote! Pro 4.0, and possibly other scripts, allows remote attackers to execute arbitrary code via the pollid parameter, which is supplied to an eval function call, a different vulnerability type than CVE-2005-4632...
CVE-2005-4632
SQL injection vulnerability in pollframe.php in Vote! Pro 4.0 and earlier allows remote attackers to execute arbitrary SQL commands via the pollid parameter...
Vote! Pro 4.x "poll_id" Sql inj.
Vote! Pro 4.x "pollid" Sql inj. Vuln. dicovered by : r0t Date: 23 nov. 2005 Orginal advisory:http://pridels.blogspot.com/2005/11/vote-pro-4x-pollid-sql-inj.html Vendor: Shedix.com Product link: http://www.vote-pro.com/ affected version: 4.x and prior. Product Description: Vote! Pro 4.0 is php...