Lucene search
K

8 matches found

NVD
NVD
added 2007/01/26 1:28 a.m.19 views

CVE-2007-0535

Multiple eval injection vulnerabilities in Vote! Pro 4.0, and possibly earlier, allow remote attackers to execute arbitrary code via requests to unspecified PHP scripts with the pollid parameter, which is supplied to eval function calls, a different set of vectors than CVE-2007-0504. NOTE: The...

7.5CVSS7.8AI score0.03616EPSS
Exploits0References3
CVE
CVE
added 2007/01/26 1:0 a.m.53 views

CVE-2007-0535

CVE-2007-0535 (and related CVE-2007-0504) affect Vote! Pro 4.0 and possibly earlier, via eval injection in poll_frame.php where the poll_id parameter is passed to eval. This allows remote attackers to execute arbitrary code due to unsanitized input in PHP scripts; vectors are not fully detailed b...

7.5CVSS7.8AI score0.03616EPSS
Exploits0References3Affected Software1
EUVD
EUVD
added 2007/01/26 12:0 a.m.5 views

EUVD-2007-0502

Eval injection vulnerability in pollframe.php in Vote! Pro 4.0, and possibly other scripts, allows remote attackers to execute arbitrary code via the pollid parameter, which is supplied to an eval function call, a different vulnerability type than CVE-2005-4632...

10CVSS7.6AI score0.06177EPSS
Exploits1References4
CVE
CVE
added 2007/01/26 12:0 a.m.49 views

CVE-2007-0504

CVE-2007-0504 is an eval-injection vulnerability in Vote! Pro 4.0 (poll_frame.php and possibly other scripts). It allows remote attackers to execute arbitrary code by supplying a malicious poll_id that is passed to an eval() call. Descriptions from connected records confirm the poll_id/eval vecto...

10CVSS7.8AI score0.06177EPSS
Exploits0References4Affected Software1
seebug.org
seebug.org
added 2007/01/24 12:0 a.m.13 views

Vote-Pro 4.0 (poll_frame.php poll_id) Remote Code Execution Exploit

No description provided by source. r0ut3r Presents... Another r0ut3r discovery! &n...

7.1AI score
Exploits0
0day.today
0day.today
added 2007/01/23 12:0 a.m.37 views

Vote-Pro 4.0 (poll_frame.php poll_id) Remote Code Execution Exploit

Exploit for unknown platform in category web applications =================================================================== Vote-Pro 4.0 pollframe.php pollid Remote Code Execution Exploit =================================================================== r0ut3r Presents... Another r0ut3r...

7.1AI score
Exploits0
CVE
CVE
added 2006/01/07 1:0 a.m.47 views

CVE-2005-4632

CVE-2005-4632 describes a SQL injection in poll_frame.php affecting Vote! Pro 4.0 and earlier. The vulnerability arises through the poll_id parameter, enabling remote attackers to issue arbitrary SQL commands. The connected documents corroborate the same advisory detail across multiple sources (C...

7.5CVSS8.4AI score0.0121EPSS
Exploits1References2Affected Software1
NVD
NVD
added 2005/12/31 5:0 a.m.17 views

CVE-2005-4632

SQL injection vulnerability in pollframe.php in Vote! Pro 4.0 and earlier allows remote attackers to execute arbitrary SQL commands via the pollid parameter...

7.5CVSS8.3AI score0.0121EPSS
Exploits1References2
Rows per page
Query Builder