disipoll Cookie Security Bypass Vulnerability

info
discussion
exploit
solution
references

disipoll Cookie Security Bypass Vulnerability

disipoll is a voting script written in PHP.

A user may modify cookie data in order to vote more than once. The cookie is designed as a security measure for disipoll voting poll information. As a result, the poll data could be corrupted by a malicious user.