Vulnerabilities > CVE-2023-1432 - Unspecified vulnerability in Online Food Ordering System Project Online Food Ordering System 2.0

CVSS 9.8 - CRITICAL

Attack vector

NETWORK

Attack complexity

LOW

Privileges required

NONE

Confidentiality impact

HIGH

Integrity impact

HIGH

Availability impact

HIGH

network

low complexity

online-food-ordering-system-project

critical

NVD

Published: 2023-03-16

Updated: 2024-11-21

Summary

A vulnerability was found in SourceCodester Online Food Ordering System 2.0 and classified as critical. Affected by this issue is some unknown functionality of the file /fos/admin/ajax.php?action=save_settings of the component POST Request Handler. The manipulation leads to improper access controls. The attack may be launched remotely. VDB-223214 is the identifier assigned to this vulnerability.

Vulnerable Configurations

Part	Description	Count
Application	Online_Food_Ordering_System_Project Online Food Ordering System Project Online Food Ordering System 2.0	1

References

https://vuldb.com/?ctiid.223214
https://vuldb.com/?ctiid.223214
https://vuldb.com/?id.223214
https://vuldb.com/?id.223214