SQL injection vulnerability in index.php in class-1 Poll Software 0.4 and earlier allows remote attackers to execute arbitrary SQL commands via the (1) pollid or (2) previouspoll parameters.Referenceshttp://www.osvdb.org/21241http://pridels0.blogspot.com/2005/11/class-1-poll-software-multiple-sql.html
