Lucene search

MitreCVELIST:CVE-2006-1217

HistoryMar 14, 2006 - 2:00 a.m.

CVE-2006-1217

2006-03-1402:00:00

mitre

www.cve.org

8.4 High

AI Score

Confidence

Low

0.016 Low

EPSS

Percentile

87.6%

JSON

SQL injection vulnerability in DSPoll 1.1 allows remote attackers to execute arbitrary SQL commands via the pollid parameter to (1) results.php, (2) topolls.php, (3) pollit.php.

References

evuln.com/vulns/96/summary.html

secunia.com/advisories/19209

securityreason.com/securityalert/620

securityreason.com/securityalert/622

securitytracker.com/id?1015758

www.osvdb.org/23879

www.osvdb.org/23880

www.osvdb.org/23881

www.securityfocus.com/archive/1/428663/100/0/threaded

www.securityfocus.com/bid/17103

www.vupen.com/english/advisories/2006/0932

exchange.xforce.ibmcloud.com/vulnerabilities/25192