Eval injection vulnerability in comments.php in Advanced Poll 2.0.2 allows remote attackers to execute arbitrary PHP code via the (1) id, (2) template_set, or (3) action parameter.
Name | Vendor | Start Version | End Version |
---|---|---|---|
Advanced_poll | Advanced_poll | 2.0.0 | 2.0.0 |
Advanced_poll | Advanced_poll | 2.0.1 | 2.0.1 |
Advanced_poll | Advanced_poll | 2.0.2 | 2.0.2 |