CVEDB API

Vulnerabilities

By Date
Known Exploited
Advanced Search

Vulnerable Software

Vendors
Products

Vulnerability Details CVE-2009-0295

SQL injection vulnerability in index.php in Information Technology Light Poll Information (ITLPoll) 2.7 Stable 2, when magic_quotes_gpc is disabled, allows remote attackers to execute arbitrary SQL commands via the id parameter.

Exploit prediction scoring system (EPSS) score

EPSS Score 0.002

EPSS Ranking 38.6%

CVSS Severity

CVSS v2 Score 6.8

References

http://osvdb.org/51616
http://secunia.com/advisories/33666
http://www.securityfocus.com/bid/33452
https://www.exploit-db.com/exploits/7867
http://osvdb.org/51616
http://secunia.com/advisories/33666
http://www.securityfocus.com/bid/33452
https://www.exploit-db.com/exploits/7867

Products affected by CVE-2009-0295

Itlpoll » Itpoll » Version: 2.7

cpe:2.3:a:itlpoll:itpoll:2.7

Vulnerabilities

Vulnerable Software

Vulnerability Details CVE-2009-0295

Products

Pricing

Contact Us