A flaw in the profile section of Online Voting System 1.0 allows an unauthenticated user to set an arbitrary password for other accounts.
https://www.exploit-db.com/exploits/43967/
http://packetstormsecurity.com/files/146254/Online-Voting-System-Authentication-Bypass.html