SQL injection vulnerability in code.php in Quick Poll Script allows remote attackers to execute arbitrary SQL commands via the id parameter.
https://www.exploit-db.com/exploits/7105
https://exchange.xforce.ibmcloud.com/vulnerabilities/44541
http://www.vupen.com/english/advisories/2008/3141
http://packetstormsecurity.org/0808-exploits/quickpoll-sql.txt