RSS   Vulnerabilities for 'Pacpoll'   RSS

2006-10-27
 
CVE-2006-5592

CWE-Other
 

 
Admin/adpoll.asp in PacPoll 4.0 and earlier allows remote attackers to bypass authentication by setting the polllog cookie value to "xx".

 
 
CVE-2006-5591

CWE-Other
 

 
Multiple SQL injection vulnerabilities in Admin/check.asp in PacPoll 4.0 and earlier allow remote attackers to execute arbitrary SQL commands via the (1) uid and (2) pwd parameters.

 


Copyright 2024, cxsecurity.com

 

Back to Top