Filtered by vendor Projectworlds
Subscriptions
Filtered by product Online Voting System Project
Subscriptions
Total
3 CVE
| CVE | Vendors | Products | Updated | CVSS v3.1 |
|---|---|---|---|---|
| CVE-2024-45986 | 2 Online Voting System Project, Projectworlds | 2 Online Voting System, Online Voting System Project | 2025-05-06 | 5.4 Medium |
| A stored Cross-Site Scripting (XSS) vulnerability was identified in Projectworld Online Voting System 1.0 that occurs when an account is registered with a malicious javascript payload. The payload is stored and subsequently executed in the voter.php and profile.php pages whenever the account information is accessed. | ||||
| CVE-2023-48434 | 1 Projectworlds | 1 Online Voting System Project | 2024-11-21 | 9.8 Critical |
| Online Voting System Project v1.0 is vulnerable to multiple Unauthenticated SQL Injection vulnerabilities. The 'username' parameter of the reg_action.php resource does not validate the characters received and they are sent unfiltered to the database. | ||||
| CVE-2023-48433 | 1 Projectworlds | 1 Online Voting System Project | 2024-11-21 | 9.8 Critical |
| Online Voting System Project v1.0 is vulnerable to multiple Unauthenticated SQL Injection vulnerabilities. The 'username' parameter of the login_action.php resource does not validate the characters received and they are sent unfiltered to the database. | ||||
Page 1 of 1.