Online Voting System Project

online_voting_system_project

CVEs (3)

CVE VENDORS PRODUCTS UPDATED PUBLISHED CVSS
CVE-2024-45986 1Projectworlds 1Online Voting System Project May 6, 2025 Sep 26, 2024 N/A· v4 5.4 MEDIUM· v3 N/A· v2 A stored Cross-Site Scripting (XSS) vulnerability was identified in Projectworld Online Voting System 1.0 that occurs when an account is registered with a malicious javascript payload. The payload is stored and subsequen...Show more A stored Cross-Site Scripting (XSS) vulnerability was identified in Projectworld Online Voting System 1.0 that occurs when an account is registered with a malicious javascript payload. The payload is stored and subsequently executed in the voter.php and profile.php pages whenever the account information is accessed.Show less
CVE-2023-48434 1Projectworlds 1Online Voting System Project Nov 21, 2024 Dec 20, 2023 N/A· v4 9.8 CRITICAL· v3 N/A· v2 Online Voting System Project v1.0 is vulnerable to multiple Unauthenticated SQL Injection vulnerabilities. The 'username' parameter of the reg_action.php resource does not validate the characters received and they are se...Show more Online Voting System Project v1.0 is vulnerable to multiple Unauthenticated SQL Injection vulnerabilities. The 'username' parameter of the reg_action.php resource does not validate the characters received and they are sent unfiltered to the database. Show less
CVE-2023-48433 1Projectworlds 1Online Voting System Project Nov 21, 2024 Dec 20, 2023 N/A· v4 9.8 CRITICAL· v3 N/A· v2 Online Voting System Project v1.0 is vulnerable to multiple Unauthenticated SQL Injection vulnerabilities. The 'username' parameter of the login_action.php resource does not validate the characters received and they are...Show more Online Voting System Project v1.0 is vulnerable to multiple Unauthenticated SQL Injection vulnerabilities. The 'username' parameter of the login_action.php resource does not validate the characters received and they are sent unfiltered to the database. Show less