VYPR

Sympoll

by Synthetic Reality

CVEs (2)

  • CVE-2003-1175Dec 31, 2003
    risk 0.03cvss epss 0.02

    Cross-site scripting (XSS) vulnerability in index.php in Sympoll 1.5 allows remote attackers to inject arbitrary web script or HTML via the vo parameter.

  • CVE-2002-1430Apr 11, 2003
    risk 0.00cvss epss 0.02

    Unknown vulnerability in Sympoll 1.2 allows remote attackers to read arbitrary files when register_globals is enabled, possibly by modifying certain PHP variables through URL parameters.