CVE-2008-2767

Publication date

2008-06-18 22:00:00

Family

mitre

State

PUBLISHED

Description

SQL injection vulnerability in search.asp in Xigla Poll Manager XE allows remote authenticated users with administrator role privileges to execute arbitrary SQL commands via the orderby parameter.