CVE-2025-13286

CVE-2025-13286 affects itsourcecode Online Voting System 1.0. The vulnerability is an SQL injection in the parameter ID of the file "/ajax.php?action=save_user" caused by inadequate input validation. Remote exploitation is possible and exploit code has been publicly released. Connected sources id...

CVE-2025-13286 itsourcecode Online Voting System ajax.php sql injection

A security flaw has been discovered in itsourcecode Online Voting System 1.0. The impacted element is an unknown function of the file /ajax.php?action=saveuser. Performing manipulation of the argument ID results in sql injection. Remote exploitation of the attack is possible. The exploit has been...

CVE-2025-13286 itsourcecode Online Voting System ajax.php sql injection

A security flaw has been discovered in itsourcecode Online Voting System 1.0. The impacted element is an unknown function of the file /ajax.php?action=saveuser. Performing manipulation of the argument ID results in sql injection. Remote exploitation of the attack is possible. The exploit has been...

CVE-2025-13285 itsourcecode Online Voting System login.php sql injection

A vulnerability was identified in itsourcecode Online Voting System 1.0. The affected element is an unknown function of the file /login.php. Such manipulation of the argument Username leads to sql injection. The attack may be launched remotely. The exploit is publicly available and might be used...

PT-2025-47146

Name of the Vulnerable Software and Affected Versions itsourcecode Online Voting System version 1.0 Description A flaw exists in itsourcecode Online Voting System that allows for SQL injection. This issue stems from manipulating the Username parameter within an unknown function of the /login.php...

PT-2025-47147

Name of the Vulnerable Software and Affected Versions itsourcecode Online Voting System version 1.0 Description A security flaw exists in itsourcecode Online Voting System version 1.0. The issue involves SQL injection stemming from manipulation of the ID argument within the file...

CVE-2025-13061

A vulnerability was detected in itsourcecode Online Voting System 1.0. This impacts an unknown function of the file /index.php?page=managevoting. Performing manipulation results in unrestricted upload. The attack is possible to be carried out remotely. The exploit is now public and may be used...

CVE-2025-13061

The connected sources confirm a concrete vulnerability in itsourcecode Online Voting System 1.0 related to unrestricted file uploads. The issue stems from a lack of validation for uploaded files via the /index.php?page=manage_voting (CNVD and NVD descriptions). This can be triggered remotely and ...

CVE-2025-13061 itsourcecode Online Voting System index.php unrestricted upload

A vulnerability was detected in itsourcecode Online Voting System 1.0. This impacts an unknown function of the file /index.php?page=managevoting. Performing manipulation results in unrestricted upload. The attack is possible to be carried out remotely. The exploit is now public and may be used...