CVE-2025-11417 identifies an unrestricted file upload vulnerability in Campcodes Advanced Online Voting Management System version 1.0, specifically within the /admin/voters_add.php file. The vulnerability arises from insufficient validation of the 'photo' parameter, which is intended for uploading voter photos but can be manipulated to upload arbitrary files, including potentially malicious scripts. This flaw allows remote attackers with low privileges to bypass restrictions and upload files without authentication or user interaction. The uploaded files could be used to execute arbitrary code on the server, leading to full system compromise or persistent backdoors. The vulnerability is classified as medium severity with a CVSS 4.0 score of 5.3, reflecting its network attack vector, low attack complexity, no user interaction, and limited scope impact. Although no exploits are currently observed in the wild, the availability of a public exploit increases the likelihood of exploitation. The vulnerability poses a significant risk to the integrity and availability of online voting processes, potentially enabling vote manipulation, denial of service, or unauthorized access to sensitive voter data. The lack of patches or vendor advisories necessitates immediate defensive measures by affected organizations.

For European organizations, particularly election commissions and governmental bodies using Campcodes Advanced Online Voting Management System, this vulnerability could undermine the integrity and trustworthiness of electoral processes. Exploitation could allow attackers to upload malicious payloads, leading to unauthorized access, data breaches of voter information, or manipulation of voting data. This threatens confidentiality, integrity, and availability of critical election infrastructure. Disruption or compromise of online voting systems could result in election delays, loss of public confidence, and potential legal and political ramifications. Additionally, attackers could leverage this vulnerability to establish persistent footholds within government networks, escalating risks to broader national cybersecurity. The medium severity rating indicates a moderate but tangible risk that requires proactive mitigation to prevent exploitation during election cycles.

1. Immediately restrict access to the /admin/voters_add.php endpoint to authorized personnel only, using strong authentication and network segmentation. 2. Implement strict server-side validation of uploaded files, including checking MIME types, file extensions, and file contents to ensure only legitimate image files are accepted. 3. Employ allowlists for acceptable file types and reject all others. 4. Use secure file storage locations outside the webroot to prevent direct execution of uploaded files. 5. Apply file renaming and metadata stripping to prevent execution of malicious payloads. 6. Monitor logs and network traffic for unusual upload activity or attempts to exploit the vulnerability. 7. Conduct regular security assessments and penetration tests focusing on file upload functionalities. 8. Engage with the vendor for patches or updates and apply them promptly once available. 9. Educate administrators on the risks of unrestricted uploads and enforce strict operational security policies. 10. Consider deploying web application firewalls (WAFs) with rules to detect and block malicious upload attempts.