Vulnerabilities > Synthetic Reality

DATE CVE VULNERABILITY TITLE RISK
2003-12-31 CVE-2003-1175 Cross-Site Scripting vulnerability in Synthetic Reality Sympoll 1.5
Cross-site scripting (XSS) vulnerability in index.php in Sympoll 1.5 allows remote attackers to inject arbitrary web script or HTML via the vo parameter.
6.8
2003-04-11 CVE-2002-1430 Unspecified vulnerability in Synthetic Reality Sympoll 1.2
Unknown vulnerability in Sympoll 1.2 allows remote attackers to read arbitrary files when register_globals is enabled, possibly by modifying certain PHP variables through URL parameters.
network
low complexity
synthetic-reality
5.0