Critical severity9.8NVD Advisory· Published Mar 16, 2021· Updated Jun 17, 2026
CVE-2021-28294
CVE-2021-28294
Description
Online Ordering System 1.0 is vulnerable to arbitrary file upload through /onlineordering/GPST/store/initiateorder.php, which may lead to remote code execution (RCE).
AI Insight
LLM-synthesized narrative grounded in this CVE's description and references.
Affected products
2- Online Ordering System/Online Ordering Systemdescription
- Range: = 1.0
Patches
Vulnerability mechanics
References
1- www.exploit-db.com/exploits/49615nvdExploitThird Party AdvisoryVDB Entry
News mentions
0No linked articles in our index yet.