Code-Projects Voting System vulnerabilities

CVE-2025-11512 [MEDIUM] CWE-79 CVE-2025-11512: A vulnerability was found in code-projects Voting System 1.0. Affected by this issue is some unknown A vulnerability was found in code-projects Voting System 1.0. Affected by this issue is some unknown functionality of the file /admin/voters_add.php. The manipulation of the argument Firstname/Lastname/Platform results in cross site scripting. The attack can be executed remotely. The exploit has been made public and could be used.

CVE-2025-11421 [MEDIUM] CWE-79 CVE-2025-11421: A flaw has been found in code-projects Voting System 1.0. The affected element is an unknown functio A flaw has been found in code-projects Voting System 1.0. The affected element is an unknown function of the file /admin/candidates_edit.php. This manipulation of the argument Firstname/Lastname/Platform causes cross site scripting. Remote exploitation of the attack is possible. The exploit has been published and may be used.

CVE-2025-11508 [MEDIUM] CWE-284 CVE-2025-11508: A security vulnerability has been detected in code-projects Voting System 1.0. This affects an unkno A security vulnerability has been detected in code-projects Voting System 1.0. This affects an unknown function of the file /admin/voters_add.php. Such manipulation of the argument photo leads to unrestricted upload. The attack can be launched remotely. The exploit has been disclosed publicly and may be used.

CVE-2025-8174 [MEDIUM] CWE-284 CVE-2025-8174: A vulnerability was found in code-projects Voting System 1.0 and classified as critical. Affected by A vulnerability was found in code-projects Voting System 1.0 and classified as critical. Affected by this issue is some unknown functionality of the file /admin/candidates_add.php. The manipulation of the argument photo leads to unrestricted upload. The attack may be launched remotely. The exploit has been disclosed to the public and may be used.

CVE-2025-7556 [MEDIUM] CWE-74 CVE-2025-7556: A vulnerability, which was classified as critical, was found in code-projects Voting System 1.0. Aff A vulnerability, which was classified as critical, was found in code-projects Voting System 1.0. Affected is an unknown function of the file /admin/voters_edit.php. The manipulation of the argument ID leads to sql injection. It is possible to launch the attack remotely. The exploit has been disclosed to the public and may be used.

CVE-2025-7581 [MEDIUM] CWE-74 CVE-2025-7581: A vulnerability, which was classified as critical, has been found in code-projects Voting System 1.0 A vulnerability, which was classified as critical, has been found in code-projects Voting System 1.0. Affected by this issue is some unknown functionality of the file /admin/positions_edit.php. The manipulation of the argument ID leads to sql injection. The attack may be launched remotely. The exploit has been disclosed to the public and may be used.

CVE-2025-7557 [MEDIUM] CWE-74 CVE-2025-7557: A vulnerability has been found in code-projects Voting System 1.0 and classified as critical. Affect A vulnerability has been found in code-projects Voting System 1.0 and classified as critical. Affected by this vulnerability is an unknown functionality of the file /admin/voters_row.php. The manipulation of the argument ID leads to sql injection. The attack can be launched remotely. The exploit has been disclosed to the public and may be used.

CVE-2025-7555 [MEDIUM] CWE-74 CVE-2025-7555: A vulnerability, which was classified as critical, has been found in code-projects Voting System 1.0 A vulnerability, which was classified as critical, has been found in code-projects Voting System 1.0. This issue affects some unknown processing of the file /admin/voters_add.php. The manipulation of the argument firstname/lastname leads to sql injection. The attack may be initiated remotely. The exploit has been disclosed to the public and may be used

CVE-2025-7558 [MEDIUM] CWE-74 CVE-2025-7558: A vulnerability was found in code-projects Voting System 1.0 and classified as critical. Affected by A vulnerability was found in code-projects Voting System 1.0 and classified as critical. Affected by this issue is some unknown functionality of the file /admin/positions_add.php. The manipulation of the argument description leads to sql injection. The attack may be launched remotely. The exploit has been disclosed to the public and may be used.

CVE-2025-7580 [MEDIUM] CWE-74 CVE-2025-7580: A vulnerability classified as critical was found in code-projects Voting System 1.0. Affected by thi A vulnerability classified as critical was found in code-projects Voting System 1.0. Affected by this vulnerability is an unknown functionality of the file /admin/positions_row.php. The manipulation of the argument ID leads to sql injection. The attack can be launched remotely. The exploit has been disclosed to the public and may be used.

CVE-2023-7129 [MEDIUM] CWE-89 CVE-2023-7129: A vulnerability, which was classified as critical, was found in code-projects Voting System 1.0. Aff A vulnerability, which was classified as critical, was found in code-projects Voting System 1.0. Affected is an unknown function of the component Voters Login. The manipulation of the argument voter leads to sql injection. The exploit has been disclosed to the public and may be used. The identifier of this vulnerability is VDB-249132.

CVE-2023-7128 [MEDIUM] CWE-89 CVE-2023-7128: A vulnerability, which was classified as critical, has been found in code-projects Voting System 1.0 A vulnerability, which was classified as critical, has been found in code-projects Voting System 1.0. This issue affects some unknown processing of the file /admin/ of the component Admin Login. The manipulation of the argument username leads to sql injection. The exploit has been disclosed to the public and may be used. The associated identifier of th