CVE-2025-11421

CVSS v3.1

5.4

Medium

Vector

AV:N/AC:L/PR:L/UI:R/S:C/C:L/I:L/A:N

Name of the Vulnerable Software and Affected Versions code-projects Voting System version 1.0

Description A flaw exists in code-projects Voting System 1.0, specifically within an unknown function of the /admin/candidates edit.php file. Manipulation of the Firstname, Lastname, and Platform arguments can lead to cross site scripting. Remote exploitation is possible, and an exploit has been published.

Recommendations At the moment, there is no information about a newer version that contains a fix for this vulnerability.

Exploit

XSS

Code Injection

Found an issue in the description? Have something to add? Feel free to write us 👾

dbugs@ptsecurity.com

Weakness Enumeration

CWE-79CWE-94

Related Identifiers

CVE-2025-11421

Affected Products

Voting System

CVE-2025-11421

Weakness Enumeration

Related Identifiers

Affected Products

References · 11