Vulnerability Information
Although we use advanced large model technology, its output may still contain inaccurate or outdated information.Shenlong tries to ensure data accuracy, but please verify and judge based on the actual situation.
Vulnerability Title
N/A
Vulnerability Description
Multiple eval injection vulnerabilities in Vote! Pro 4.0, and possibly earlier, allow remote attackers to execute arbitrary code via requests to unspecified PHP scripts with the poll_id parameter, which is supplied to eval function calls, a different set of vectors than CVE-2007-0504. NOTE: The provenance of this information is unknown; the details are obtained solely from third party information.
CVSS Information
N/A
Vulnerability Type
N/A
Vulnerability Title
Vote 多个eval注入漏洞
Vulnerability Description
Vote! Pro 4.0以及之前版本中存在多个eval注入漏洞。远程攻击者可以借助poll_id参数,对未明的PHP脚本发送请求,来执行任意代码。它会提供给eval函数调用。
CVSS Information
N/A
Vulnerability Type
N/A