CVE-2025-11409 PUBLISHED

A vulnerability was detected in Campcodes Advanced Online Voting Management System 1.0. The impacted element is an unknown function of the file /index.php. Performing manipulation of the argument voter results in sql injection. Remote exploitation of the attack is possible. The exploit is now public and may be used.

• hbesljx (VulDB User) reporter

• VDB-327346 | Campcodes Advanced Online Voting Management System index.php sql injection
• VDB-327346 | CTI Indicators (IOB, IOC, TTP, IOA)
• Submit #665542 | Campcodes Advanced Online Voting Management System 2025 SQL Injection
• https://github.com/hbesljx/vul/issues/2
• https://www.campcodes.com/

• SQL Injection CWE
• Injection CWE