CVE-2008-4633 Information

Description

SQL injection vulnerability in Node Vote 5.x before 5.x-1.1 and 6.x before 6.x-1.0 a module for Drupal when \Allow user to vote again\ is enabled allows remote authenticated users to execute arbitrary SQL commands via unspecified vectors related to a \previously cast vote.\

Reference

http://drupal.org/node/321685 http://secunia.com/advisories/32276 http://www.securityfocus.com/bid/31779 https://exchange.xforce.ibmcloud.com/vulnerabilities/45920