Daniel Nyström

3 exploits Active since Jun 2002
CVE-2002-0588 EXPLOITDB text WORKING POC
PVote < 1.9 - Unauthenticated Poll Manipulation via add.php or del.php
PVote before 1.9 does not authenticate users for restricted operations, which allows remote attackers to add or delete polls by modifying parameters to (1) add.php or (2) del.php.
CVE-2002-0589 EXPLOITDB text WORKING POC
PVote < 1.9 - Unauthenticated Administrative Password Change via ch_info.php
PVote before 1.9 allows remote attackers to change the administrative password and gain privileges by directly calling ch_info.php with the newpass and confirm parameters both set to the new password.
CVE-2002-0590 EXPLOITDB text WORKING POC
IcrediBB 1.1 Beta - Stored Cross-Site Scripting via Post Title or Body
Cross-site scripting (CSS) vulnerability in IcrediBB 1.1 Beta allows remote attackers to execute arbitrary script and steal cookies as other IcrediBB users via the (1) title or (2) body of posts.