ГлавнаяУязвимости → CVE-2026-14649
7.3высокая

CVE-2026-14649

Описание

A vulnerability was detected in code-projects Online Voting System 1.0. Impacted is the function test_input of the file /saveVote.php. Performing a manipulation of the argument voterName/voterEmail/voterID/selectedCandidate results in sql injection. The attack can be initiated remotely.

CVSS
Балл7.3 — высокая
ВекторCVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:L/I:L/A:L
Источники
https://code-projects.org/https://gist.github.com/c4ttr4ck/a29b2238099fa07b4f072c21123b55efhttps://vuldb.com/cve/CVE-2026-14649https://vuldb.com/submit/846330https://vuldb.com/vuln/376162https://vuldb.com/vuln/376162/ctihttps://gist.github.com/c4ttr4ck/a29b2238099fa07b4f072c21123b55ef