Filtered by vendor Synthetic Reality Subscriptions
Filtered by product Sympoll Subscriptions
Total 2 CVE
CVE Vendors Products Updated CVSS v3.1
CVE-2003-1175 1 Synthetic Reality 1 Sympoll 2024-11-20 N/A
Cross-site scripting (XSS) vulnerability in index.php in Sympoll 1.5 allows remote attackers to inject arbitrary web script or HTML via the vo parameter.
CVE-2002-1430 1 Synthetic Reality 1 Sympoll 2024-11-20 N/A
Unknown vulnerability in Sympoll 1.2 allows remote attackers to read arbitrary files when register_globals is enabled, possibly by modifying certain PHP variables through URL parameters.