Vulnerabilities (CVE)

Filtered by vendor Pacos Drivers Subscribe
Filtered by product Pacpoll
Total 2 CVE
CVE Vendors Products Updated CVSS v2 CVSS v3
CVE-2006-5591 1 Pacos Drivers 1 Pacpoll 2024-02-04 5.0 MEDIUM N/A
Multiple SQL injection vulnerabilities in Admin/check.asp in PacPoll 4.0 and earlier allow remote attackers to execute arbitrary SQL commands via the (1) uid and (2) pwd parameters.
CVE-2006-5592 1 Pacos Drivers 1 Pacpoll 2024-02-04 7.5 HIGH N/A
Admin/adpoll.asp in PacPoll 4.0 and earlier allows remote attackers to bypass authentication by setting the polllog cookie value to "xx".