CVE-2006-4652 Information

Description

(1) Amazing Little Poll and (2) Amazing Little Picture Poll have a default password of \dsapoll\ which allows remote attackers to create a new poll by entering default credentials via lp_admin.php.

Reference

http://securityreason.com/securityalert/1527 http://www.securityfocus.com/archive/1/445081/100/0/threaded http://www.securityfocus.com/bid/19837 https://exchange.xforce.ibmcloud.com/vulnerabilities/28737