GCVE - cpe:2.3:a:2daybiz:polls_script:*:*:*:*:*:*:*:*

Approved changes feed: RSS · Atom

cpe:2.3:a:2daybiz:polls_script:*:*:*:*:*:*:*:*

part: a version: * update: *

Vendor	2Daybiz (`1e571860-5420-5668-8a47-f94e12826d93`)
Product	Polls Script (`dc1ff759-827c-50e1-b17e-5369ebebcfd0`)
Edition	*
Language	*
Software edition	*
Target software	*
Target hardware	*
Other	*
Notes	Imported from gcve-enriched-dumps CVE data

PURL mappings

PURL	Source	Last updated
No PURL mappings for this CPE yet.

Vulnerability references

Identifier	cpeApplicability	Submitted	db.gcve.eu details	Rationale
`CVE:CVE-2010-5004`	vulnerable	2026-06-03 14:30:44.622359	Details available SQL injection vulnerability in searchvote.php in 2daybiz Polls (aka Advanced Poll) Script allows remote attackers to execute arbitrary SQL commands via the category parameter. Published: 2011-11-02T21:00:00.000Z Updated: 2024-09-16T17:49:08.228Z Open on db.gcve.eu Reference links http://www.securityfocus.com/bid/41172 http://www.exploit-db.com/exploits/14074	Imported from gcve-enriched-dumps CVE data
`CVE:CVE-2010-1704`	vulnerable	2026-06-03 14:30:16.437765	Details available Multiple SQL injection vulnerabilities in 2daybiz Polls (aka Advanced Poll) Script allow remote attackers to execute arbitrary SQL commands via (1) the password field to login.php, (2) the login field (aka email parameter) to login.php, (3) the password field (aka pass parameter) to the default URI under admin/, and possibly (4) the login field to the default URI under admin/. NOTE: some of these details are obtained from third party information. Published: 2010-05-04T15:00:00.000Z Updated: 2024-08-07T01:35:52.597Z Open on db.gcve.eu Reference links https://exchange.xforce.ibmcloud.com/vulnerabilities/58189 https://exchange.xforce.ibmcloud.com/vulnerabilities/58127 http://www.securityfocus.com/bid/39745 http://secunia.com/advisories/39622 http://www.exploit-db.com/exploits/12395	Imported from gcve-enriched-dumps CVE data
`CVE:CVE-2010-1703`	vulnerable	2026-06-03 14:30:16.437351	Details available Multiple cross-site scripting (XSS) vulnerabilities in index_search.php in 2daybiz Polls (aka Advanced Poll) Script allow remote attackers to inject arbitrary web script or HTML via the (1) category parameter or (2) search field. Published: 2010-05-04T15:00:00.000Z Updated: 2024-08-07T01:35:53.474Z Open on db.gcve.eu Reference links http://www.securityfocus.com/bid/39745 http://secunia.com/advisories/39622 http://www.exploit-db.com/exploits/12395 http://packetstormsecurity.org/1004-exploits/aps-sqlxss.txt https://exchange.xforce.ibmcloud.com/vulnerabilities/58128	Imported from gcve-enriched-dumps CVE data

Contribute

You can submit an edit proposal for this CPE entry or suggest a related product/vendor addition using the action button above.