CVE-2018-5988

SQL Injection exists in Flexible Poll 1.2 via the id parameter to mobile_preview.php or index.php.