CVE-2024-45986
- EPSS 0.22%
- Veröffentlicht 26.09.2024 21:15:07
- Zuletzt bearbeitet 06.05.2025 21:16:36
A stored Cross-Site Scripting (XSS) vulnerability was identified in Projectworld Online Voting System 1.0 that occurs when an account is registered with a malicious javascript payload. The payload is stored and subsequently executed in the voter.php ...
CVE-2023-48433
- EPSS 0.07%
- Veröffentlicht 20.12.2023 21:15:07
- Zuletzt bearbeitet 21.11.2024 08:31:42
Online Voting System Project v1.0 is vulnerable to multiple Unauthenticated SQL Injection vulnerabilities. The 'username' parameter of the login_action.php resource does not validate the characters received and they are sent unfiltered to the databas...
CVE-2023-48434
- EPSS 0.07%
- Veröffentlicht 20.12.2023 21:15:07
- Zuletzt bearbeitet 21.11.2024 08:31:43
Online Voting System Project v1.0 is vulnerable to multiple Unauthenticated SQL Injection vulnerabilities. The 'username' parameter of the reg_action.php resource does not validate the characters received and they are sent unfiltered to the database....