This page lists publicly disclosed CVE vulnerabilities affecting cgi-world poll_it (linked via NVD CPE). Each row includes severity scores, summaries, and publication dates to help identify and analyze security issues.
| CVE | Summary | Source | Max CVSS | EPSS % | Published | Updated |
|---|---|---|---|---|---|---|
| CVE-2000-1070 | pollit.cgi in Poll It 2.01 and earlier uses data files that are located under the web document root, which allows remote attackers to access sensitive or private information. | [email protected] | 5.0 | 0.56% | 2000-12-11 | 2026-04-16 |
| CVE-2000-1069 | pollit.cgi in Poll It 2.01 and earlier allows remote attackers to access administrative functions without knowing the real password by specifying the same value to the entered_password and admin_password parameters. | [email protected] | 6.4 | 6.85% | 2000-12-11 | 2026-04-16 |
| CVE-2000-1068 | pollit.cgi in Poll It 2.0 allows remote attackers to execute arbitrary commands via shell metacharacters in the poll_options parameter. | [email protected] | 10.0 | 2.32% | 2000-12-11 | 2026-04-16 |
| CVE-2000-0590 | Poll It 2.0 CGI script allows remote attackers to read arbitrary files by specifying the file name in the data_dir parameter. | [email protected] | 7.5 | 7.33% | 2000-07-04 | 2026-04-16 |