CVE Search Engine - Security Vulnerabilities and Exploits Search Tool

show all

11 matches found

EUVD•added 2025/10/07 12:30 a.m.•2 views

EUVD-2002-1413

Malware in sbrugna...

5CVSS6.4AI score0.00741EPSS

Exploits1References5

EUVD•added 2025/10/07 12:30 a.m.•1 views

EUVD-2003-1165

Malware in sbrugna...

6.8CVSS6.4AI score0.00764EPSS

Exploits1References6

seebug.org•added 2014/07/01 12:0 a.m.•12 views

Synthetic Reality SymPoll 1.5 Cross-Site Scripting Vulnerability

No description provided by source. source: http://www.securityfocus.com/bid/8956/info It has been reported that Sympoll is prone to a cross-site scripting vulnerability. The issue is reported to exist due insufficient sanitization of user-supplied data through the 'vo' parameter. The problem may...

7.1AI score

Exploits0

Cvelist•added 2005/05/10 4:0 a.m.•13 views

CVE-2003-1175

Cross-site scripting XSS vulnerability in index.php in Sympoll 1.5 allows remote attackers to inject arbitrary web script or HTML via the vo parameter...

5.7AI score0.00764EPSS

Exploits1References5

CVE•added 2005/05/10 4:0 a.m.•33 views

CVE-2003-1175

CVE-2003-1175 concerns a cross-site scripting (XSS) vulnerability in Sympoll 1.5, where the tainted vo parameter in index.php can be exploited to inject arbitrary script/HTML. The NVD entry lists a CVSSv2 base score of 6.8 (MEDIUM) with network impact, partial confidentiality, integrity and avail...

6.8CVSS6AI score0.00764EPSS

Exploits1References5Affected Software1

CVE•added 2004/09/01 4:0 a.m.•33 views

CVE-2002-1430

CVE-2002-1430 : Unknown vulnerability in Sympoll 1.2 allows remote attackers to read arbitrary files when register_globals is enabled, possibly by modifying certain PHP variables through URL parameters. Exploitation details are not provided in the connected documents; the description indicates a ...

5CVSS7.3AI score0.00741EPSS

Exploits1References4Affected Software1

Cvelist•added 2004/09/01 4:0 a.m.•14 views

CVE-2002-1430

Unknown vulnerability in Sympoll 1.2 allows remote attackers to read arbitrary files when registerglobals is enabled, possibly by modifying certain PHP variables through URL parameters...

6.9AI score0.00741EPSS

Exploits1References4

NVD•added 2003/12/31 5:0 a.m.•7 views

CVE-2003-1175

Cross-site scripting XSS vulnerability in index.php in Sympoll 1.5 allows remote attackers to inject arbitrary web script or HTML via the vo parameter...

6.8CVSS5.7AI score0.00764EPSS

Exploits1References5

Exploit DB•added 2003/11/03 12:0 a.m.•25 views

Synthetic Reality SymPoll 1.5 - Cross-Site Scripting

source: https://www.securityfocus.com/bid/8956/info It has been reported that Sympoll is prone to a cross-site scripting vulnerability. The issue is reported to exist due insufficient sanitization of user-supplied data through the 'vo' parameter. The problem may allow a remote attacker to execute...

7.4AI score

Exploits0

NVD•added 2003/04/11 4:0 a.m.•4 views

CVE-2002-1430

Unknown vulnerability in Sympoll 1.2 allows remote attackers to read arbitrary files when registerglobals is enabled, possibly by modifying certain PHP variables through URL parameters...

5CVSS6.9AI score0.00741EPSS

Exploits1References4

securityvulns•added 2002/07/31 12:0 a.m.•27 views

[ADVISORY]: Arbitrary file disclosure vulnerability in Sympoll 1.2

Sympoll is a customizable voting booth system written in PHP. A missing variable integrity check allows arbitrary files to be viewed on a web server that hosts Sympoll version 1.2. Hosts that have disabled the registerglobals directive in their php.ini file are not at risk. This vulnerability was...

1.9AI score

Exploits0

Rows per page

Query Builder

Family

Bulletin Type

Min CVSS Score

Date

Order by