VYPR

Food Ordering System

by Janobe

CVEs (5)

  • CVE-2026-4839HigMar 26, 2026
    risk 0.47cvss 7.3epss 0.00

    A vulnerability has been found in SourceCodester Food Ordering System 1.0. This affects an unknown function of the file /purchase.php of the component Parameter Handler. The manipulation of the argument custom leads to sql injection. The attack can be initiated remotely. The…

  • CVE-2025-12931MedNov 10, 2025
    risk 0.41cvss 6.3epss 0.00

    A vulnerability was found in SourceCodester Food Ordering System 1.0. Affected by this vulnerability is an unknown functionality of the file /routers/edit-orders.php. The manipulation of the argument ID results in sql injection. It is possible to launch the attack remotely. The…

  • CVE-2025-12930MedNov 10, 2025
    risk 0.41cvss 6.3epss 0.00

    A vulnerability has been found in SourceCodester Food Ordering System 1.0. Affected is an unknown function of the file /view-ticket.php. The manipulation of the argument ID leads to sql injection. It is possible to initiate the attack remotely. The exploit has been disclosed to…

  • CVE-2022-43081Nov 1, 2022
    risk 0.00cvss epss 0.01

    Fast Food Ordering System v1.0 was discovered to contain a SQL injection vulnerability via the component /fastfood/purchase.php.

  • CVE-2022-43082Nov 1, 2022
    risk 0.00cvss epss 0.00

    A cross-site scripting (XSS) vulnerability in /fastfood/purchase.php of Fast Food Ordering System v1.0 allows attackers to execute arbitrary web scripts or HTML via a crafted payload injected into the customer parameter.