CVE-2025-10078

Medium CVSS: 6.9

A vulnerability was detected in SourceCodester Online Polling System 1.0. Affected is an unknown function of the file /admin/candidates.php. Performing manipulation of the argument ID results in sql injection. Remote exploitation of the attack is possible. The exploit is now public and may be used.

Vendor

Razormist

Product

Online Polling System

CWE

CWE-74

Yayın Tarihi

2025-09-08 03:15:38

Güncelleme

2025-09-09 16:51:49

Source Identifier

cna@vuldb.com

KEV Date Added

Kategoriler

CWE-74 Online Polling System MEDIUM Razormist 2025

Referanslar

https://github.com/ganzhi-qcy/cve/issues/21 https://vuldb.com/?ctiid.323026 https://vuldb.com/?id.323026 https://vuldb.com/?submit.644623 https://www.sourcecodester.com/

Benzer Kayıtlar

Medium

CVE-2025-10617

A weakness has been identified in SourceCodester Online Polling System 1.0. Affected by this vulnerability is an unknown…

Medium

CVE-2025-10082

A vulnerability has been found in SourceCodester Online Polling System 1.0. Affected is an unknown function of the file…

Medium

CVE-2025-10077

A security vulnerability has been detected in SourceCodester Online Polling System 1.0. This impacts an unknown function…

Medium

CVE-2025-10075

A security flaw has been discovered in SourceCodester Online Polling System 1.0. The impacted element is an unknown func…

Medium

CVE-2025-10076

A weakness has been identified in SourceCodester Online Polling System 1.0. This affects an unknown function of the file…

Medium

CVE-2025-9699

A vulnerability was detected in SourceCodester Online Polling System Code 1.0. This vulnerability affects unknown code o…