CVE-2024-45987 Information

Description

Projectworld Online Voting System Version 1.0 is vulnerable to Cross Site Request Forgery (CSRF) via voter.php. This vulnerability allows an attacker to craft a malicious link that when clicked by an authenticated user automatically submits a vote for a specified party without the user’s consent or knowledge. The attack leverages the user’s active session to perform the unauthorized action compromising the integrity of the voting process.

Reference

https://github.com/soursec/CVEs/tree/main/CVE-2024-45987

Related CNNVD

CNNVD-202509-3692 (Published: 2025-09-23)