CVE-2005-2157

Name of the Vulnerable Software and Affected Versions: nabopoll version 1.2

Description: The issue allows remote attackers to execute arbitrary PHP code via the path parameter in the survey.inc.php file.

Recommendations: For nabopoll version 1.2, consider restricting access to the survey.inc.php file or validating and sanitizing the path parameter to prevent remote file inclusion attacks. As a temporary workaround, consider disabling the execution of remote files until a patch is available.