Code Projects Voting System
Don't miss out!
Thousands of developers use stack.watch to stay informed.Get an email whenever new security vulnerabilities are reported in Code Projects Voting System.
By the Year
In 2025 there have been 5 vulnerabilities in Code Projects Voting System with an average score of 4.7 out of ten. Voting System did not have any published security vulnerabilities last year. That is, 5 more vulnerabilities have already been reported in 2025 as compared to last year.
| Year | Vulnerabilities | Average Score |
|---|---|---|
| 2025 | 5 | 4.70 |
| 2024 | 0 | 0.00 |
| 2023 | 2 | 8.80 |
It may take a day or so for new Voting System vulnerabilities to show up in the stats or in the list of recent security vulnerabilities. Additionally vulnerabilities may be tagged under a different product or component name.
Recent Code Projects Voting System Security Vulnerabilities
SQL Injection in Automated Voting System 1.0 via /admin/update_user.php
CVE-2025-11668
4.7 - Medium
- October 13, 2025
A vulnerability was determined in code-projects Automated Voting System 1.0. Affected by this issue is some unknown functionality of the file /admin/update_user.php. This manipulation of the argument Password causes sql injection. The attack is possible to be carried out remotely. The exploit has been publicly disclosed and may be utilized.
SQL Injection
Automated Voting System 1.0 SQLi in add_candidate_modal.php (firstname), PHP
CVE-2025-11667
6.3 - Medium
- October 13, 2025
A vulnerability was found in code-projects Automated Voting System 1.0. Affected by this vulnerability is an unknown functionality of the file /admin/add_candidate_modal.php.. The manipulation of the argument firstname results in sql injection. The attack can be executed remotely. The exploit has been made public and could be used.
SQL Injection
Remote XSS via Firstname in code-projects Voting System 1.0 /admin/voters_add.php
CVE-2025-11512
4.3 - Medium
- October 08, 2025
A vulnerability was found in code-projects Voting System 1.0. Affected by this issue is some unknown functionality of the file /admin/voters_add.php. The manipulation of the argument Firstname/Lastname/Platform results in cross site scripting. The attack can be executed remotely. The exploit has been made public and could be used.
XSS
Unrestricted File Upload in voters_add.php of Voting System 1.0 (PHP)
CVE-2025-11508
4.7 - Medium
- October 08, 2025
A security vulnerability has been detected in code-projects Voting System 1.0. This affects an unknown function of the file /admin/voters_add.php. Such manipulation of the argument photo leads to unrestricted upload. The attack can be launched remotely. The exploit has been disclosed publicly and may be used.
Unrestricted File Upload
Code-Projects Voting System 1.0 XSS in admin/candidates_edit.php
CVE-2025-11421
3.5 - Low
- October 08, 2025
A flaw has been found in code-projects Voting System 1.0. The affected element is an unknown function of the file /admin/candidates_edit.php. This manipulation of the argument Firstname/Lastname/Platform causes cross site scripting. Remote exploitation of the attack is possible. The exploit has been published and may be used.
XSS
A vulnerability, which was classified as critical, was found in code-projects Voting System 1.0
CVE-2023-7129
8.8 - High
- December 28, 2023
A vulnerability, which was classified as critical, was found in code-projects Voting System 1.0. Affected is an unknown function of the component Voters Login. The manipulation of the argument voter leads to sql injection. The exploit has been disclosed to the public and may be used. The identifier of this vulnerability is VDB-249132.
SQL Injection
A vulnerability, which was classified as critical, has been found in code-projects Voting System 1.0
CVE-2023-7128
8.8 - High
- December 28, 2023
A vulnerability, which was classified as critical, has been found in code-projects Voting System 1.0. This issue affects some unknown processing of the file /admin/ of the component Admin Login. The manipulation of the argument username leads to sql injection. The exploit has been disclosed to the public and may be used. The associated identifier of this vulnerability is VDB-249131.
SQL Injection
Stay on top of Security Vulnerabilities
Want an email whenever new vulnerabilities are published for Code Projects Voting System or by Code Projects? Click the Watch button to subscribe.
