Lucene search
China National Vulnerability DatabaseCNVD-2023-29417HistoryApr 18, 2023 - 12:00 a.m.
Campcodes Advanced Online Voting System SQL Injection Vulnerability (CNVD-2023-29417)
2023-04-1800:00:00
China National Vulnerability Database
www.cnvd.org.cn
5
campcodes
online voting
sql injection
vulnerability
exploitation
sensitive data
database
0.002 Low
EPSS
Percentile
53.3%
Campcodes Advanced Online Voting System is an online voting system. A SQL injection vulnerability exists in Campcodes Advanced Online Voting System v1.0. The vulnerability stems from the lack of validation of externally entered SQL statements in the parameter id of the file /admin/positions_row.php, which could be exploited by attackers to execute illegal SQL commands to steal sensitive database data .
| CPE | Name | Operator | Version |
|---|---|---|---|
| campcodes advanced online voting system campcodes advanced online voting system v | eq | 1.0 |
Related
cve
cve
CVE-2023-2051
2023-04-14 12:15:07
prion
prion
Sql injection
2023-04-14 12:15:00
cvelist
cvelist
nvd
nvd
CVE-2023-2051
2023-04-14 12:15:07