CVEDB API

Vulnerabilities

By Date
Known Exploited
Advanced Search

Vulnerable Software

Vendors
Products

Phpcentral: >> Poll Script >> 1.0 Security Vulnerabilities

CVE-2007-4339

Multiple PHP remote file inclusion vulnerabilities in PHPCentral Poll Script 1.0 allow remote attackers to execute arbitrary PHP code via a URL in the _SERVER[DOCUMENT_ROOT] parameter in (1) poll.php and (2) pollarchive.php. NOTE: a reliable third party states that this issue is resultant from a variable extraction error in functions.php.

CVSS Score

7.5

EPSS Score

0.011

Published

2007-08-14

Page 1

Vulnerabilities

Vulnerable Software

Phpcentral: >> Poll Script >> 1.0 Security Vulnerabilities

Products

Pricing

Contact Us