Information disclosure

AdaptCMS 2.0.2 Beta allows remote attackers to obtain sensitive information via a direct request to a .php file, which reveals the installation path in an error message, as demonstrated by inc/pollvote.php and certain other files...

Sql injection

SQL injection vulnerability in pollvote.php in iGaming CMS 1.5 allows remote attackers to execute arbitrary SQL commands via the id parameter...

iGaming CMS 1.5 - poll_vote.php SQL Injection

iGaming CMS 1.5 - pollvote.php SQL Injection source: https://www.securityfocus.com/bid/29059/info iGaming CMS is prone to an SQL-injection vulnerability because it fails to sufficiently sanitize user-supplied data before using it in an SQL query. Exploiting this issue could allow an attacker to...

CVE-2005-1755

PHP remote file inclusion vulnerability in pollvote.php in PHP Poll Creator 1.01 allows remote attackers to execute arbitrary PHP code via the relativerpfad parameter...

phpPoll.txt

svadvisory6 -------------------------------------------------------------+ Title: PHP Injection in PHP Poll Creator | Software: PHP Poll Creator v 1.01 | Homepage: http://www.phppc.de +------------+ Finder: rash | 24.05.05 | -------------------------------------------------------------+ Descripti...