Описание
Eval injection vulnerability in poll_frame.php in Vote! Pro 4.0, and possibly other scripts, allows remote attackers to execute arbitrary code via the poll_id parameter, which is supplied to an eval function call, a different vulnerability type than CVE-2005-4632.
Уязвимые конфигурации
Конфигурация 1Версия до 4.0 (включая)
cpe:2.3:a:vote_pro:vote_pro:*:*:*:*:*:*:*:*
EPSS
Процентиль: 95%
0.17544
Средний
10 Critical
CVSS2
Дефекты
NVD-CWE-Other
Связанные уязвимости
github
больше 3 лет назад
Eval injection vulnerability in poll_frame.php in Vote! Pro 4.0, and possibly other scripts, allows remote attackers to execute arbitrary code via the poll_id parameter, which is supplied to an eval function call, a different vulnerability type than CVE-2005-4632.
EPSS
Процентиль: 95%
0.17544
Средний
10 Critical
CVSS2
Дефекты
NVD-CWE-Other