2 matches found
CVE-2023-48433 Online Voting System Project v1.0 - Multiple Unauthenticated SQL Injections (SQLi)
Online Voting System Project v1.0 is vulnerable to multiple Unauthenticated SQL Injection vulnerabilities. The 'username' parameter of the loginaction.php resource does not validate the characters received and they are sent unfiltered to the database...
CVE-2023-48433
CVE-2023-48433 affects Online Voting System Project v1.0. The issue is multiple unauthenticated SQL injection vulnerabilities in the login_action.php resource, caused by lack of validation/escaping for the username parameter, allowing unfiltered data to reach the database. Impact is high (confide...