VYPR

Online Food Ordering System

by Projectworlds.in

CVEs (5)

  • CVE-2023-45338CriNov 2, 2023
    risk 0.64cvss 9.8epss 0.01

    Online Food Ordering System v1.0 is vulnerable to multiple Unauthenticated SQL Injection vulnerabilities. The 'id' parameter of the routers/add-ticket.php resource does not validate the characters received and they are sent unfiltered to the database.

  • CVE-2023-45343CriNov 2, 2023
    risk 0.64cvss 9.8epss 0.01

    Online Food Ordering System v1.0 is vulnerable to multiple Unauthenticated SQL Injection vulnerabilities. The 'ticket_id' parameter of the routers/ticket-message.php resource does not validate the characters received and they are sent unfiltered to the database.

  • CVE-2023-45340CriNov 2, 2023
    risk 0.64cvss 9.8epss 0.01

    Online Food Ordering System v1.0 is vulnerable to multiple Unauthenticated SQL Injection vulnerabilities. The 'phone' parameter of the routers/details-router.php resource does not validate the characters received and they are sent unfiltered to the database.

  • CVE-2023-45336CriNov 2, 2023
    risk 0.64cvss 9.8epss 0.01

    Online Food Ordering System v1.0 is vulnerable to multiple Unauthenticated SQL Injection vulnerabilities. The 'password' parameter of the routers/router.php resource does not validate the characters received and they are sent unfiltered to the database.

  • CVE-2023-45325CriNov 2, 2023
    risk 0.64cvss 9.8epss 0.01

    Online Food Ordering System v1.0 is vulnerable to multiple Unauthenticated SQL Injection vulnerabilities. The 'address' parameter of the routers/add-users.php resource does not validate the characters received and they are sent unfiltered to the database.