Hacking the D.C. Internet Voting Pilot

Very good article on the pilot test of the system which will allow overseas military personal to vote online.

A shell-injection vulnerability which allows the remote commands to be executed.

Evil happens when you allow the temp file to retain commands in the file extension.