Vulnerabilities > Canteen Management System Project

DATE CVE VULNERABILITY TITLE RISK
2022-11-08 CVE-2022-43144 Cross-site Scripting vulnerability in Canteen Management System Project Canteen Management System 1.0
A cross-site scripting (XSS) vulnerability in Canteen Management System v1.0 allows attackers to execute arbitrary web scripts or HTML via a crafted payload.
network
low complexity
canteen-management-system-project CWE-79
5.4
5.4
2022-11-07 CVE-2022-43049 SQL Injection vulnerability in Canteen Management System Project Canteen Management System 1.0
Canteen Management System Project v1.0 was discovered to contain a SQL injection vulnerability via the component /youthappam/add-food.php.
network
low complexity
canteen-management-system-project CWE-89
7.2
7.2
2022-11-01 CVE-2022-43328 SQL Injection vulnerability in Canteen Management System Project Canteen Management System 1.0
Canteen Management System v1.0 was discovered to contain a SQL injection vulnerability via the id parameter at /editorder.php.
network
low complexity
canteen-management-system-project CWE-89
7.2
7.2
2022-11-01 CVE-2022-43329 SQL Injection vulnerability in Canteen Management System Project Canteen Management System 1.0
Canteen Management System v1.0 was discovered to contain a SQL injection vulnerability via the id parameter at /print.php.
network
low complexity
canteen-management-system-project CWE-89
7.2
7.2
2022-11-01 CVE-2022-43330 SQL Injection vulnerability in Canteen Management System Project Canteen Management System 1.0
Canteen Management System v1.0 was discovered to contain a SQL injection vulnerability via the id parameter at /editorder.php.
network
low complexity
canteen-management-system-project CWE-89
7.2
7.2
2022-11-01 CVE-2022-43331 SQL Injection vulnerability in Canteen Management System Project Canteen Management System 1.0
Canteen Management System v1.0 was discovered to contain a SQL injection vulnerability via the id parameter at /php_action/printOrder.php.
network
low complexity
canteen-management-system-project CWE-89
7.2
7.2
2022-10-28 CVE-2022-43231 Unrestricted Upload of File with Dangerous Type vulnerability in Canteen Management System Project Canteen Management System 1.0
Canteen Management System v1.0 was discovered to contain an arbitrary file upload vulnerability via /youthappam/manage_website.php. 		7.2
7.2
2022-10-28 CVE-2022-43232 SQL Injection vulnerability in Canteen Management System Project Canteen Management System 1.0
Canteen Management System v1.0 was discovered to contain a SQL injection vulnerability via the userid parameter at /php_action/fetchOrderData.php.
network
low complexity
canteen-management-system-project CWE-89
7.2
7.2
2022-10-28 CVE-2022-43233 SQL Injection vulnerability in Canteen Management System Project Canteen Management System 1.0
Canteen Management System v1.0 was discovered to contain a SQL injection vulnerability via the userid parameter at /php_action/fetchSelectedUser.php.
network
low complexity
canteen-management-system-project CWE-89
7.2
7.2
2022-10-28 CVE-2022-43275 Unrestricted Upload of File with Dangerous Type vulnerability in Canteen Management System Project Canteen Management System 1.0
Canteen Management System v1.0 was discovered to contain an arbitrary file upload vulnerability via /youthappam/php_action/editProductImage.php. 		7.2
7.2