Vulnerabilities > CVE-2022-3012 - Unspecified vulnerability in Fast Food Ordering System Project Fast Food Ordering System 1.0

CVSS 8.8 - HIGH

Attack vector

NETWORK

Attack complexity

LOW

Privileges required

LOW

Confidentiality impact

HIGH

Integrity impact

HIGH

Availability impact

HIGH

network

low complexity

fast-food-ordering-system-project

NVD

Published: 2022-08-27

Updated: 2024-11-21

Summary

A vulnerability was found in oretnom23 Fast Food Ordering System. It has been rated as critical. Affected by this issue is some unknown functionality of the file ffos/admin/reports/index.php. The manipulation of the argument date leads to sql injection. The attack may be launched remotely. The exploit has been disclosed to the public and may be used. VDB-207422 is the identifier assigned to this vulnerability.

Vulnerable Configurations

Part	Description	Count
Application	Fast_Food_Ordering_System_Project Fast Food Ordering System Project Fast Food Ordering System 1.0	1

References

https://github.com/0x14dli/ffos-SQL-injection-vulnerability-exists
https://github.com/0x14dli/ffos-SQL-injection-vulnerability-exists
https://vuldb.com/?id.207422
https://vuldb.com/?id.207422