Description
pollit.cgi in Poll It 2.01 and earlier uses data files that are located under the web document root, which allows remote attackers to access sensitive or private information.
Affected products
- cgi-world / poll_it2.0 – 2.0
- cgi-world / poll_it2.01 – 2.01
- cgi-world / poll_it_pro1.6 – 1.6