2 matches found
CVE-2006-5591
CVE-2006-5591 affects PacPoll 4.0 (and earlier). The vulnerability is SQL injection in Admin/check.asp, exploitable via the uid and pwd parameters, allowing remote attackers to execute arbitrary SQL commands. The affected component is the Admin/check.asp script in PacPoll 4.0 and earlier; root ca...
CVE-2006-5592
CVE-2006-5592 affects PacPoll 4.0 and earlier. The admin/adpoll.asp page allows remote attackers to bypass authentication by setting the polllog cookie value to "xx". This is a client-side cookie manipulation issue that enables unauthorized access to admin functionality. The linked sources confir...