{"id":8088,"date":"2025-07-13T20:22:03","date_gmt":"2025-07-13T20:22:03","guid":{"rendered":"http:\/\/localhost\/?p=8088"},"modified":"2025-07-13T20:22:03","modified_gmt":"2025-07-13T20:22:03","slug":"code-projects-voting-system-votersaddphp-sql-injection","status":"publish","type":"post","link":"https:\/\/zero.redgem.net\/?p=8088","title":{"rendered":"code-projects Voting System voters_add.php sql injection"},"content":{"rendered":"
\n

CVE Details<\/h2>\n
\n
\n

Basic Information<\/h3>\n\n\n\n\n\n
Title<\/th>\ncode-projects Voting System voters_add.php sql injection<\/td>\n<\/tr>\n
Type<\/th>\ncve<\/td>\n<\/tr>\n
Published<\/th>\n2025-07-14T00:14:05.281Z<\/td>\n<\/tr>\n
Modified<\/th>\n2025-07-14T00:14:05.281Z<\/td>\n<\/tr>\n<\/table>\n<\/div>\n
\n

Product Information<\/h3>\n\n\n\n\n
Vendor<\/th>\ncode-projects<\/td>\n<\/tr>\n
Product<\/th>\nVoting System<\/td>\n<\/tr>\n
Version<\/th>\n1.0<\/td>\n<\/tr>\n<\/table>\n<\/div>\n<\/div>\n
\n

CVSS Information<\/h3>\n\n\n\n
Base Score<\/th>\n5.3 (MEDIUM)<\/td>\n<\/tr>\n
Attack Vector<\/th>\nCVSS:4.0\/AV:N\/AC:L\/AT:N\/PR:L\/UI:N\/VC:L\/VI:L\/VA:L\/SC:N\/SI:N\/SA:N\/E:P<\/td>\n<\/tr>\n<\/table>\n<\/div>\n
\n

AI Analysis<\/h3>\n\n\n\n\n\n\n
AI Description<\/th>\nA critical SQL injection vulnerability exists in code-projects Voting System 1.0. It affects the \/admin\/voters_add.php file, allowing remote attackers to inject SQL code via the firstname and lastname arguments. This can lead to unauthorized data access and manipulation. The exploit is publicly disclosed, increasing the risk of attack.<\/td>\n<\/tr>\n
AI Severity<\/th>\nMedium<\/td>\n<\/tr>\n
AI Vendor<\/th>\ncode-projects<\/td>\n<\/tr>\n
AI Product<\/th>\nVoting System<\/td>\n<\/tr>\n
AI Version<\/th>\n1.0<\/td>\n<\/tr>\n<\/table>\n<\/div>\n
\n

Affected Products<\/h4>\n