CVE-2008-7045
published 2009-08-24CVE-2008-7045: AJ Square Free Polling Script (AJPoll) Database version allows remote attackers to bypass authentication and reset poll votes via a direct request to…
PriorityP341medium6.4CVSS 2.0
AVNACLAuNCPIPAN
EXPLOIT
EPSS
2.62%
83.6th percentile
AJ Square Free Polling Script (AJPoll) Database version allows remote attackers to bypass authentication and reset poll votes via a direct request to admin/resetvote.php.
CVEs like this are exactly what “Exploited This Week” covers.
Every Monday: what got weaponized or added to CISA KEV in the last seven days — each CVE cross-linked to its PoC, Nuclei template, and detection rule. Free, one email a week, unsubscribe in one click.
GHSA
GHSA-fj83-j657-qpv5: AJ Square Free Polling Script (AJPoll) allows remote attackers to bypass authentication and create new polls via a direct request to admin/include/new
ghsa_unreviewed·2022-05-17·CVSS 6.4
CVE-2008-7046 [MEDIUM] CWE-287 GHSA-fj83-j657-qpv5: AJ Square Free Polling Script (AJPoll) allows remote attackers to bypass authentication and create new polls via a direct request to admin/include/new
AJ Square Free Polling Script (AJPoll) allows remote attackers to bypass authentication and create new polls via a direct request to admin/include/newpoll.php, a different vector than CVE-2008-7045. NOTE: the provenance of this information is unknown; the details are obtained solely from third party information.
GHSA
GHSA-768v-3pj5-xwfp: AJ Square Free Polling Script (AJPoll) Database version allows remote attackers to bypass authentication and reset poll votes via a direct request to
ghsa_unreviewed·2022-05-17
CVE-2008-7045 [MEDIUM] CWE-287 GHSA-768v-3pj5-xwfp: AJ Square Free Polling Script (AJPoll) Database version allows remote attackers to bypass authentication and reset poll votes via a direct request to
AJ Square Free Polling Script (AJPoll) Database version allows remote attackers to bypass authentication and reset poll votes via a direct request to admin/resetvote.php.
No detection rules found.
No writeups or analysis indexed.
2009-08-24
Published