Fast Food Ordering System
Products
1- 9 CVEs
Recent CVEs
9| CVE | Vendor / Product | Sev | Risk | CVSS | EPSS | KEV | Published | Description |
|---|---|---|---|---|---|---|---|---|
| CVE-2024-57328 | Cri | 0.64 | 9.8 | 0.01 | Jan 23, 2025 | A SQL Injection vulnerability exists in the login form of Online Food Ordering System v1.0. The vulnerability arises because the input fields username and password are not properly sanitized, allowing attackers to inject malicious SQL queries to bypass authentication and gain… | ||
| CVE-2022-36759 | Cri | 0.64 | 9.8 | 0.01 | Sep 2, 2022 | Online Food Ordering System v1.0 was discovered to contain a SQL injection vulnerability via the component /dishes.php?res_id=. | ||
| CVE-2022-29650 | Cri | 0.64 | 9.8 | 0.01 | May 25, 2022 | Online Food Ordering System v1.0 was discovered to contain a SQL injection vulnerability via the Search parameter at /online-food-order/food-search.php. | ||
| CVE-2022-43081 | Hig | 0.49 | 7.5 | 0.01 | Nov 1, 2022 | Fast Food Ordering System v1.0 was discovered to contain a SQL injection vulnerability via the component /fastfood/purchase.php. | ||
| CVE-2022-42990 | Hig | 0.47 | 7.2 | 0.01 | Nov 7, 2022 | Food Ordering Management System v1.0 was discovered to contain a SQL injection vulnerability via the component /foms/all-orders.php?status=Cancelled%20by%20Customer. | ||
| CVE-2022-29651 | Hig | 0.47 | 7.2 | 0.01 | May 25, 2022 | An arbitrary file upload vulnerability in the Select Image function of Online Food Ordering System v1.0 allows attackers to execute arbitrary code via a crafted PHP file. | ||
| CVE-2022-43082 | Med | 0.40 | 6.1 | 0.00 | Nov 1, 2022 | A cross-site scripting (XSS) vulnerability in /fastfood/purchase.php of Fast Food Ordering System v1.0 allows attackers to execute arbitrary web scripts or HTML via a crafted payload injected into the customer parameter. | ||
| CVE-2022-32318 | Med | 0.35 | 5.4 | 0.00 | Jul 14, 2022 | Fast Food Ordering System v1.0 was discovered to contain a persistent cross-site scripting (XSS) vulnerability via the component /ffos/classes/Master.php?f=save_category. | ||
| CVE-2022-1991 | Low | 0.23 | 3.5 | 0.01 | Jun 7, 2022 | A vulnerability classified as problematic has been found in Fast Food Ordering System 1.0. Affected is the file Master.php of the Master List. The manipulation of the argument Description with the input foo "> leads to cross site… |
- risk 0.64cvss 9.8epss 0.01
A SQL Injection vulnerability exists in the login form of Online Food Ordering System v1.0. The vulnerability arises because the input fields username and password are not properly sanitized, allowing attackers to inject malicious SQL queries to bypass authentication and gain…
- risk 0.64cvss 9.8epss 0.01
Online Food Ordering System v1.0 was discovered to contain a SQL injection vulnerability via the component /dishes.php?res_id=.
- risk 0.64cvss 9.8epss 0.01
Online Food Ordering System v1.0 was discovered to contain a SQL injection vulnerability via the Search parameter at /online-food-order/food-search.php.
- risk 0.49cvss 7.5epss 0.01
Fast Food Ordering System v1.0 was discovered to contain a SQL injection vulnerability via the component /fastfood/purchase.php.
- risk 0.47cvss 7.2epss 0.01
Food Ordering Management System v1.0 was discovered to contain a SQL injection vulnerability via the component /foms/all-orders.php?status=Cancelled%20by%20Customer.
- risk 0.47cvss 7.2epss 0.01
An arbitrary file upload vulnerability in the Select Image function of Online Food Ordering System v1.0 allows attackers to execute arbitrary code via a crafted PHP file.
- risk 0.40cvss 6.1epss 0.00
A cross-site scripting (XSS) vulnerability in /fastfood/purchase.php of Fast Food Ordering System v1.0 allows attackers to execute arbitrary web scripts or HTML via a crafted payload injected into the customer parameter.
- risk 0.35cvss 5.4epss 0.00
Fast Food Ordering System v1.0 was discovered to contain a persistent cross-site scripting (XSS) vulnerability via the component /ffos/classes/Master.php?f=save_category.
- risk 0.23cvss 3.5epss 0.01
A vulnerability classified as problematic has been found in Fast Food Ordering System 1.0. Affected is the file Master.php of the Master List. The manipulation of the argument Description with the input foo "> leads to cross site…