CVE-2025-13286 – itsourcecode Online Voting System ajax.php sql injection

CVE ID : CVE-2025-13286

Published : Nov. 17, 2025, 2:15 p.m. | 49 minutes ago

Description : A security flaw has been discovered in itsourcecode Online Voting System 1.0. The impacted element is an unknown function of the file /ajax.php?action=save_user. Performing manipulation of the argument ID results in sql injection. Remote exploitation of the attack is possible. The exploit has been released to the public and may be exploited.

Severity: 6.5 | MEDIUM

Visit the link for more details, such as CVSS details, affected products, timeline, and more…