Lucene search
China National Vulnerability DatabaseCNVD-2023-29413HistoryApr 18, 2023 - 12:00 a.m.
Campcodes Advanced Online Voting System SQL Injection Vulnerability (CNVD-2023-29413)
2023-04-1800:00:00
China National Vulnerability Database
www.cnvd.org.cn
9
campcodes
online voting system
sql injection
vulnerability
attackers
database
sensitive data
0.002 Low
EPSS
Percentile
52.2%
Campcodes Advanced Online Voting System is an online voting system. A SQL injection vulnerability exists in Campcodes Advanced Online Voting System v1.0. The vulnerability stems from the lack of validation of external input SQL statements in the parameter id of the file /admin/candidates_row.php, which can be exploited by attackers to execute illegal SQL commands to steal database sensitive data.
| CPE | Name | Operator | Version |
|---|---|---|---|
| campcodes advanced online voting system campcodes advanced online voting system v | eq | 1.0 |
Related
cvelist
cvelist
prion
prion
Sql injection
2023-04-14 13:15:00
nvd
nvd
CVE-2023-2053
2023-04-14 13:15:07
cve
cve
CVE-2023-2053
2023-04-14 13:15:07