8 matches found
CVE-2007-0535
Multiple eval injection vulnerabilities in Vote! Pro 4.0, and possibly earlier, allow remote attackers to execute arbitrary code via requests to unspecified PHP scripts with the pollid parameter, which is supplied to eval function calls, a different set of vectors than CVE-2007-0504. NOTE: The...
CVE-2007-0535
CVE-2007-0535 (and related CVE-2007-0504) affect Vote! Pro 4.0 and possibly earlier, via eval injection in poll_frame.php where the poll_id parameter is passed to eval. This allows remote attackers to execute arbitrary code due to unsanitized input in PHP scripts; vectors are not fully detailed b...
EUVD-2007-0502
Eval injection vulnerability in pollframe.php in Vote! Pro 4.0, and possibly other scripts, allows remote attackers to execute arbitrary code via the pollid parameter, which is supplied to an eval function call, a different vulnerability type than CVE-2005-4632...
CVE-2007-0504
CVE-2007-0504 is an eval-injection vulnerability in Vote! Pro 4.0 (poll_frame.php and possibly other scripts). It allows remote attackers to execute arbitrary code by supplying a malicious poll_id that is passed to an eval() call. Descriptions from connected records confirm the poll_id/eval vecto...
Vote-Pro 4.0 (poll_frame.php poll_id) Remote Code Execution Exploit
No description provided by source. r0ut3r Presents... Another r0ut3r discovery! &n...
Vote-Pro 4.0 (poll_frame.php poll_id) Remote Code Execution Exploit
Exploit for unknown platform in category web applications =================================================================== Vote-Pro 4.0 pollframe.php pollid Remote Code Execution Exploit =================================================================== r0ut3r Presents... Another r0ut3r...
CVE-2005-4632
CVE-2005-4632 describes a SQL injection in poll_frame.php affecting Vote! Pro 4.0 and earlier. The vulnerability arises through the poll_id parameter, enabling remote attackers to issue arbitrary SQL commands. The connected documents corroborate the same advisory detail across multiple sources (C...
CVE-2005-4632
SQL injection vulnerability in pollframe.php in Vote! Pro 4.0 and earlier allows remote attackers to execute arbitrary SQL commands via the pollid parameter...