VYPR

PollPro

by PollPro

CVEs (2)

  • CVE-2008-5573Dec 15, 2008
    risk 0.03cvss epss 0.01

    SQL injection vulnerability in the login feature in Poll Pro 2.0 allows remote attackers to execute arbitrary SQL commands via the (1) Password and (2) username parameters.

  • CVE-2009-0112Jan 9, 2009
    risk 0.00cvss epss 0.01

    Cross-site request forgery (CSRF) vulnerability in admin/agent_edit.asp in PollPro 3.0 allows remote attackers to create or modify accounts as administrators via the username, password, and name parameters.