CVE-2026-14649

Severity CVSS v4.0:
MEDIUM
Type:
CWE-74 Injection
Publication date:
04/07/2026
Last modified:
04/07/2026

Description

A vulnerability was detected in code-projects Online Voting System 1.0. Impacted is the function test_input of the file /saveVote.php. Performing a manipulation of the argument voterName/voterEmail/voterID/selectedCandidate results in sql injection. The attack can be initiated remotely.