Unrated severityNVD Advisory· Published Oct 1, 2021· Updated Aug 4, 2024

CVE-2021-41647

Description

An un-authenticated error-based and time-based blind SQL injection vulnerability exists in Kaushik Jadhav Online Food Ordering Web App 1.0. An attacker can exploit the vulnerable "username" parameter in login.php and retrieve sensitive database information, as well as add an administrative user.

AI Insight

LLM-synthesized narrative grounded in this CVE's description and references.

Affected products

Kaushik Jadhav/Online Food Ordering Web Appdescription
Kaushik Jadhav/Online Food Ordering Web Appllm-create
Range: = 1.0

Patches

Vulnerability mechanics

References

packetstormsecurity.com/files/164422/Online-Food-Ordering-Web-App-SQL-Injection.htmlmitrex_refsource_MISC
github.com/nu11secur1ty/CVE-mitre/tree/main/CVE-2021-41647mitrex_refsource_MISC

News mentions

No linked articles in our index yet.

cvss	0.000
epss	0.002
exploit	0.000
kev	0.000
patch	0.000
ransomware	0.000