CVE-2005-4632

HIGH

7.5

CVSS Severity Score

EPSS Score0.0020%

EPSS Percentile7.69th

Published2005年12月31日

Last Modified2026年4月16日

Vulnerability Description

SQL injection vulnerability in poll_frame.php in Vote! Pro 4.0 and earlier allows remote attackers to execute arbitrary SQL commands via the poll_id parameter.

Affected Platforms (CPE)

📦

Vote Pro

<= 4.0

References & Advisories

🔗 http://pridels0.blogspot.com/2005/11/vote-pro-4x-pollid-sql-inj.html

🔗 http://www.osvdb.org/21309

🔗 http://pridels0.blogspot.com/2005/11/vote-pro-4x-pollid-sql-inj.html

🔗 http://www.osvdb.org/21309

相关漏洞威胁

CVE-2007-050410.0

Eval injection vulnerability in poll_frame.php in Vote! Pro 4.0, and possibly other scripts, allows remote attackers to execute ar...

CVE-2007-05357.5

Multiple eval injection vulnerabilities in Vote! Pro 4.0, and possibly earlier, allow remote attackers to execute arbitrary code v...

CVE-2005-044110.0

Multiple stack-based buffer overflows in Sybase Adaptive Server Enterprise (ASE) 12.x before 12.5.3 ESD#1 allow remote authenticat...

CVE-2005-063610.0

Format string vulnerability in Foxmail Server 2.0 allows remote attackers to cause a denial of service (crash) and possibly execut...