Vulnerabilities > Maxdev > Mdpro > 1.083

DATE CVE VULNERABILITY TITLE RISK
2009-07-27 CVE-2009-2618 SQL Injection vulnerability in Maxdev Mdpro 1.083
SQL injection vulnerability in the Surveys (aka NS-Polls) module in MDPro (MD-Pro) 1.083.x allows remote attackers to execute arbitrary SQL commands via the pollID parameter in a results action to modules.php.
network
low complexity
maxdev CWE-89
7.5