CVE-2009-2618 Information

Feb 14, 2021 cve

Description

SQL injection vulnerability in the Surveys (aka NS-Polls) module in MDPro (MD-Pro) 1.083.x allows remote attackers to execute arbitrary SQL commands via the pollID parameter in a results action to modules.php.

Reference

http://www.exploit-db.com/exploits/9021 http://www.securityfocus.com/bid/35495 https://exchange.xforce.ibmcloud.com/vulnerabilities/51385

Share on: