Vulmon
Recent Vulnerabilities
Research Posts
Trends
Blog
About
Contact
Vulmon Alerts
By Relevance
By Risk Score
By Publish Date
online food ordering system project online food ordering system 2.0 vulnerabilities and exploits
(subscribe to this query)
9.8
CVSSv3
CVE-2021-41644
Remote Code Exection (RCE) vulnerability exists in Sourcecodester Online Food Ordering System 2.0 via a maliciously crafted PHP file that bypasses the image upload filters.
Online Food Ordering System Project Online Food Ordering System 2.0
6.1
CVSSv3
CVE-2023-24191
Online Food Ordering System v2 exists to contain a cross-site scripting (XSS) vulnerability via the redirect parameter in signup.php.
Online Food Ordering System Project Online Food Ordering System 2.0
6.1
CVSSv3
CVE-2023-24192
Online Food Ordering System v2 exists to contain a cross-site scripting (XSS) vulnerability via the redirect parameter in login.php.
Online Food Ordering System Project Online Food Ordering System 2.0
6.1
CVSSv3
CVE-2023-24194
Online Food Ordering System v2 exists to contain a cross-site scripting (XSS) vulnerability via the page parameter in navbar.php.
Online Food Ordering System Project Online Food Ordering System 2.0
6.1
CVSSv3
CVE-2023-24195
Online Food Ordering System v2 exists to contain a cross-site scripting (XSS) vulnerability via the page parameter in index.php.
Online Food Ordering System Project Online Food Ordering System 2.0
6.1
CVSSv3
CVE-2023-24197
Online Food Ordering System v2 exists to contain a SQL injection vulnerability via the id parameter at view_order.php.
Online Food Ordering System Project Online Food Ordering System 2.0
9.8
CVSSv3
CVE-2023-0332
A vulnerability was found in SourceCodester Online Food Ordering System 2.0. It has been classified as critical. Affected is an unknown function of the file admin/manage_user.php. The manipulation of the argument id leads to sql injection. It is possible to launch the attack remo...
Online Food Ordering System Project Online Food Ordering System 2.0
9.8
CVSSv3
CVE-2023-30122
An arbitrary file upload vulnerability in the component /admin/ajax.php?action=save_menu of Online Food Ordering System v2.0 allows malicious users to execute arbitrary code via uploading a crafted PHP file.
Online Food Ordering System Project Online Food Ordering System 2.0
9.8
CVSSv3
CVE-2023-24646
An arbitrary file upload vulnerability in the component /fos/admin/ajax.php of Food Ordering System v2.0 allows malicious users to execute arbitrary code via a crafted PHP file.
Online Food Ordering System Project Online Food Ordering System 2.0
7.5
CVSSv3
CVE-2023-24647
Food Ordering System v2.0 exists to contain a SQL injection vulnerability via the email parameter.
Online Food Ordering System Project Online Food Ordering System 2.0
CVSSv3
CVSSv2
CVSSv3
VMScore
Recommendations:
CVE-2023-49223
CVE-2024-0044
information disclosure
CVE-2024-35753
HTML injection
CVE-2024-21306
CVE-2024-35733
SQL injection
CVE-2024-35732
Vulnerability Notification Service
You don’t have to wait for vulnerability scanning results
Get Started
1
2
NEXT »