CVEDB API

Vulnerabilities

By Date
Known Exploited
Advanced Search

Vulnerable Software

Vendors
Products

Vulnerability Details CVE-2007-0504

Eval injection vulnerability in poll_frame.php in Vote! Pro 4.0, and possibly other scripts, allows remote attackers to execute arbitrary code via the poll_id parameter, which is supplied to an eval function call, a different vulnerability type than CVE-2005-4632.

Exploit prediction scoring system (EPSS) score

EPSS Score 0.058

EPSS Ranking 90.1%

CVSS Severity

CVSS v2 Score 10.0

References

http://osvdb.org/31606
http://secunia.com/advisories/23834
http://www.vupen.com/english/advisories/2007/0300
https://www.exploit-db.com/exploits/3180
http://osvdb.org/31606
http://secunia.com/advisories/23834
http://www.vupen.com/english/advisories/2007/0300
https://www.exploit-db.com/exploits/3180

Products affected by CVE-2007-0504

Vote Pro » Vote Pro » Version: Any

cpe:2.3:a:vote_pro:vote_pro:*

Vulnerabilities

Vulnerable Software

Vulnerability Details CVE-2007-0504

Products

Pricing

Contact Us