Vulnerabilities (CVE)

Vendor filter

Nabocorp Subscribe

Filter

3 total CVE
CVE Vendors Products Updated CVSS
CVE-2007-1166 1 Nabocorp 1 Nabopoll 2018-10-16 7.5
SQL injection vulnerability in result.php in Nabopoll 1.2 allows remote attackers to execute arbitrary SQL commands via the surv parameter.
CVE-2007-0873 1 Nabocorp 1 Nabopoll 2018-10-16 7.5
nabopoll 1.1.2 allows remote attackers to bypass authentication and access certain administrative functionality via a direct request for (1) config_edit.php, (2) template_edit.php, or (3) survey_edit.php in admin/.
CVE-2005-2157 1 Nabocorp 1 Nabopoll 2011-03-08 5.0
PHP remote file inclusion vulnerability in survey.inc.php for nabopoll 1.2 allows remote attackers to execute arbitrary PHP code via the path parameter.