Vote Pro : Security Vulnerabilities, CVEs, CVSS score >= 2
Multiple eval injection vulnerabilities in Vote! Pro 4.0, and possibly earlier, allow remote attackers to execute arbitrary code via requests to unspecified PHP scripts with the poll_id parameter, which is supplied to eval function calls, a different set of vectors than CVE-2007-0504. NOTE: The provenance of this information is unknown; the details are obtained solely from third party information.
Max CVSS
7.5
EPSS Score
2.51%
Published
2007-01-26
Updated
2011-03-08
Eval injection vulnerability in poll_frame.php in Vote! Pro 4.0, and possibly other scripts, allows remote attackers to execute arbitrary code via the poll_id parameter, which is supplied to an eval function call, a different vulnerability type than CVE-2005-4632.
Max CVSS
10.0
EPSS Score
3.27%
Published
2007-01-26
Updated
2017-10-19
SQL injection vulnerability in poll_frame.php in Vote! Pro 4.0 and earlier allows remote attackers to execute arbitrary SQL commands via the poll_id parameter.
Max CVSS
7.5
EPSS Score
0.18%
Published
2005-12-31
Updated
2008-09-20
3 vulnerabilities found