Lucene search
China National Vulnerability DatabaseCNVD-2023-29411HistoryApr 18, 2023 - 12:00 a.m.
Campcodes Advanced Online Voting System SQL Injection Vulnerability (CNVD-2023-29411)
2023-04-1800:00:00
China National Vulnerability Database
www.cnvd.org.cn
6
campcodes
online voting
sql injection
vulnerability
database
attackers
validation
0.002 Low
EPSS
Percentile
53.2%
Campcodes Advanced Online Voting System is an online voting system. Campcodes Advanced Online Voting System v1.0 is vulnerable to SQL injection. The vulnerability stems from the lack of validation of external input SQL statements in the parameter id of the file /admin/ballot_down.php, which can be exploited by attackers to execute illegal SQL commands to steal sensitive database data.
| CPE | Name | Operator | Version |
|---|---|---|---|
| campcodes advanced online voting system campcodes advanced online voting system v | eq | 1.0 |
Related
cve
cve
CVE-2023-2052
2023-04-14 12:15:07
cvelist
cvelist
prion
prion
Sql injection
2023-04-14 12:15:00
nvd
nvd
CVE-2023-2052
2023-04-14 12:15:07