Clwxv

**Name of the Vulnerable Software and Affected Versions** Campcodes Advanced Online Voting Management System version 1.0 **Description** A flaw exists in Campcodes Advanced Online Voting Management System version 1.0. The issue involves the manipulation of the `ID` argument within the file `/admin/candidates edit.php`, leading to a SQL injection. This can be initiated remotely. The exploit is publicly available. **Recommendations** At the moment, there is no information about a newer version that contains a fix for this vulnerability.

**Name of the Vulnerable Software and Affected Versions** CodeAstro Student Grading System version 1.0 **Description** A flaw exists in the processing of the `/adminLogin.php` file within CodeAstro Student Grading System. Manipulation of the `staffId` argument can lead to a SQL injection. This issue is exploitable remotely and an exploit is publicly available. **Recommendations** At the moment, there is no information about a newer version that contains a fix for this vulnerability.