Vulmon
Recent Vulnerabilities
Research Posts
Trends
Blog
About
Contact
Vulmon Alerts
By Relevance
By Risk Score
By Publish Date
poll script vulnerabilities and exploits
(subscribe to this query)
7.5
CVSSv2
CVE-2010-1704
Multiple SQL injection vulnerabilities in 2daybiz Polls (aka Advanced Poll) Script allow remote malicious users to execute arbitrary SQL commands via (1) the password field to login.php, (2) the login field (aka email parameter) to login.php, (3) the password field (aka pass para...
2daybiz Polls Script
1 EDB exploit
4.3
CVSSv2
CVE-2009-3601
Cross-site scripting (XSS) vulnerability in demo_page.php in Scriptsez Ultimate Poll allows remote malicious users to inject arbitrary web script or HTML via the clr parameter in a vote action.
Scriptsez Ultimate Poll
1 EDB exploit
4.3
CVSSv2
CVE-2010-2003
Cross-site scripting (XSS) vulnerability in misc/get_admin.php in Advanced Poll 2.08 allows remote malicious users to inject arbitrary web script or HTML via the mysql_host parameter.
Proxy2 Advanced Poll 2.08
1 EDB exploit
4.3
CVSSv2
CVE-2008-7141
Cross-site scripting (XSS) vulnerability in setup.php in @lex Poll 2.1 allows remote malicious users to inject arbitrary web script or HTML via the language_setup parameter. NOTE: the provenance of this information is unknown; the details are obtained solely from third party info...
Alexphpteam \\@lex Poll 2.1
1 EDB exploit
4.3
CVSSv2
CVE-2009-4384
Multiple cross-site scripting (XSS) vulnerabilities in Scriptsez.net Ez Poll Hoster (EPH) allow remote malicious users to inject arbitrary web script or HTML via the (1) pid parameter in a code action to index.php and the (2) uid parameter in a view action to profile.php.
Scriptsez Ez Poll Hoster
1 EDB exploit
7.5
CVSSv2
CVE-2000-0590
Poll It 2.0 CGI script allows remote malicious users to read arbitrary files by specifying the file name in the data_dir parameter.
Cgi-world Poll It 2.0
1 EDB exploit
3.5
CVSSv2
CVE-2008-2768
Cross-site scripting (XSS) vulnerability in admin/search.asp in Xigla Poll Manager XE allows remote authenticated users with administrator role privileges to inject arbitrary web script or HTML via unspecified vectors ("all fields").
Xigla Absolute Poll Manager Xe
4.3
CVSSv2
CVE-2009-3509
Cross-site scripting (XSS) vulnerability in admin/admin_index.php in CJ Dynamic Poll PRO 2.0 allows remote malicious users to inject arbitrary web script or HTML via the PATH_INFO.
Cj-design Cj Dynamic Poll 2.0
1 EDB exploit
4.3
CVSSv2
CVE-2007-4630
Cross-site scripting (XSS) vulnerability in xlaapmview.asp in Absolute Poll Manager XE 4.1 allows remote malicious users to inject arbitrary web script or HTML via the msg parameter.
Xigla Absolute Poll Manager Xe 4.1
1 EDB exploit
4.3
CVSSv2
CVE-2007-6136
Multiple cross-site scripting (XSS) vulnerabilities in index.php in M2Scripts MySpace Scripts Poll Creator allow remote malicious users to inject arbitrary web script or HTML via the (1) title, (2) intro, and (3) question parameters, and (4) unspecified answer parameters, in a cr...
M2scripts My Space Scripts Poll Creator 0
1 EDB exploit
CVSSv2
CVSSv2
CVSSv3
VMScore
Recommendations:
CVE-2024-3581
reflected XSS
CVE-2024-26925
CVE-2024-27956
LFI
CVE-2024-3607
CVE-2024-3107
CVE-2024-3295
SQL
Vulnerability Notification Service
You don’t have to wait for vulnerability scanning results
Get Started
« PREV
1
2
3
4
NEXT »