For example, create a poll and put in the following text, and save/publish the poll.
"I don't like this"
Then becomes in the poll:
This might be a SQL injection vulnerability as well, I haven't tried it of course, but I recommend the admins look into it.
This post has been edited by wordswords: 12 February 2013 - 05:22 PM