CVEDB API

Vulnerabilities

Vulnerable Software

Xigla: >> Absolute Poll Manager Xe Security Vulnerabilities

CVE-2008-6860

Xigla Software Absolute Poll Manager XE 4.1 allows remote attackers to bypass authentication and gain administrative access by setting a cookie to a certain value.

CVSS Score

7.5

EPSS Score

0.005

Published

2009-07-14

CVE-2008-4569

SQL injection vulnerability in xlacomments.asp in XIGLA Software Absolute Poll Manager XE 4.1 allows remote attackers to execute arbitrary SQL commands via the p parameter.

CVSS Score

7.5

EPSS Score

0.001

Published

2008-10-15

CVE-2008-2767

SQL injection vulnerability in search.asp in Xigla Poll Manager XE allows remote authenticated users with administrator role privileges to execute arbitrary SQL commands via the orderby parameter.

CVSS Score

6.5

EPSS Score

0.004

Published

2008-06-18

CVE-2008-2768

Cross-site scripting (XSS) vulnerability in admin/search.asp in Xigla Poll Manager XE allows remote authenticated users with administrator role privileges to inject arbitrary web script or HTML via unspecified vectors ("all fields").

CVSS Score

3.5

EPSS Score

0.002

Published

2008-06-18

CVE-2007-4630

Cross-site scripting (XSS) vulnerability in xlaapmview.asp in Absolute Poll Manager XE 4.1 allows remote attackers to inject arbitrary web script or HTML via the msg parameter.

CVSS Score

4.3

EPSS Score

0.065

Published

2007-08-31

Page 1

Vulnerabilities

Vulnerable Software

Xigla: >> Absolute Poll Manager Xe Security Vulnerabilities

Products

Pricing

Contact Us