CVE-2025-40885 — A SQL Injection vulnerability was discovered in the Smart Polling functionality due to improper validation of an input parameter. An authenticated user with limited privileges can execute arbitrary SE — CVE Database · The Intelligence Room