Synthetic Reality » Sympoll : Security Vulnerabilities, CVEs, CVSS score >= 1
Cross-site scripting (XSS) vulnerability in index.php in Sympoll 1.5 allows remote attackers to inject arbitrary web script or HTML via the vo parameter.
Max CVSS
6.8
EPSS Score
2.18%
Published
2003-12-31
Updated
2017-07-11
Unknown vulnerability in Sympoll 1.2 allows remote attackers to read arbitrary files when register_globals is enabled, possibly by modifying certain PHP variables through URL parameters.
Max CVSS
5.0
EPSS Score
0.53%
Published
2003-04-11
Updated
2008-09-05
2 vulnerabilities found