CVE-2008-3310
CVE-2008-3310 describes an SQL injection in default.asp of the Pre Survey Poll application, exploitable via the catid parameter to execute arbitrary SQL commands remotely. The vulnerability is borne by the web application’s input handling, enabling an attacker to influence the underlying database...