PoC/Exploit for Unauthorized Data Modification in Advanced Poll
Published Proof of Concept code - Unauthorized Data Modification in Advanced Poll.
- Description
- Available
- Solution
- Not available - check vendor's website
1. SQL Injection Example.
Need to be added to header of HTTP-query when answering a question:
User-Agent: '+[sql_expression]
2. Unauthorized Data Modification Example
Need to be added to header of HTTP-query when answering a question:
X-Forwarded-For: [any IP]
Order Source Code Analysis
Protect against attacks by source code review of your site made by our team.The task will be done by specialists in web security.