• info
• discussion
• exploit
• solution
• references

disipoll Cookie Security Bypass Vulnerability

disipoll is a voting script written in PHP.

A user may modify cookie data in order to vote more than once. The cookie is designed as a security measure for disipoll voting poll information. As a result, the poll data could be corrupted by a malicious user.