Mark from infosecstuff

1 exploit Active since Mar 2010
CVE-2009-4746 EXPLOITDB text WRITEUP
Dreamlevels DreamPoll 3.1 - Cross-Site Scripting via recordsPerPage Parameter
Cross-site scripting (XSS) vulnerability in index.php in Dreamlevels DreamPoll 3.1 allows remote attackers to inject arbitrary web script or HTML via the recordsPerPage parameter in a poll_default login action.