Vulnerabilities > Online Food Ordering System Project > Online Food Ordering System > Critical

DATE	CVE	VULNERABILITY TITLE	RISK
2024-01-05	CVE-2024-0247	SQL Injection vulnerability in Online Food Ordering System Project Online Food Ordering System 1.0 A vulnerability classified as critical was found in CodeAstro Online Food Ordering System 1.0. network low complexity online-food-ordering-system-project CWE-89 critical	9.8
2023-05-05	CVE-2023-30122	Unrestricted Upload of File with Dangerous Type vulnerability in Online Food Ordering System Project Online Food Ordering System 2.0 An arbitrary file upload vulnerability in the component /admin/ajax.php?action=save_menu of Online Food Ordering System v2.0 allows attackers to execute arbitrary code via uploading a crafted PHP file. network low complexity online-food-ordering-system-project CWE-434 critical	9.8
2023-03-16	CVE-2023-1432	Improper Access Control vulnerability in Online Food Ordering System Project Online Food Ordering System 2.0 A vulnerability was found in SourceCodester Online Food Ordering System 2.0 and classified as critical. network low complexity online-food-ordering-system-project CWE-284 critical	9.8
2023-02-13	CVE-2023-24646	Unrestricted Upload of File with Dangerous Type vulnerability in Online Food Ordering System Project Online Food Ordering System 2.0 An arbitrary file upload vulnerability in the component /fos/admin/ajax.php of Food Ordering System v2.0 allows attackers to execute arbitrary code via a crafted PHP file. network low complexity online-food-ordering-system-project CWE-434 critical	9.8
2023-01-20	CVE-2020-29297	SQL Injection vulnerability in Online Food Ordering System Project Online Food Ordering System 1.0 Multiple SQL Injection vulnerabilities in tourist5 Online-food-ordering-system 1.0. network low complexity online-food-ordering-system-project CWE-89 critical	9.8
2023-01-17	CVE-2023-0332	SQL Injection vulnerability in Online Food Ordering System Project Online Food Ordering System 2.0 A vulnerability was found in SourceCodester Online Food Ordering System 2.0. network low complexity online-food-ordering-system-project CWE-89 critical	9.8
2023-01-12	CVE-2023-0257	Unrestricted Upload of File with Dangerous Type vulnerability in Online Food Ordering System Project Online Food Ordering System 2.0 A vulnerability was found in SourceCodester Online Food Ordering System 2.0. network low complexity online-food-ordering-system-project CWE-434 critical	9.8
2023-01-12	CVE-2023-0256	SQL Injection vulnerability in Online Food Ordering System Project Online Food Ordering System 2.0 A vulnerability was found in SourceCodester Online Food Ordering System 2.0. network low complexity online-food-ordering-system-project CWE-89 critical	9.8
2022-09-02	CVE-2022-36759	SQL Injection vulnerability in Online Food Ordering System Project Online Food Ordering System 1.0 Online Food Ordering System v1.0 was discovered to contain a SQL injection vulnerability via the component /dishes.php?res_id=. network low complexity online-food-ordering-system-project CWE-89 critical	9.8
2022-05-25	CVE-2022-29650	SQL Injection vulnerability in Online Food Ordering System Project Online Food Ordering System 1.0 Online Food Ordering System v1.0 was discovered to contain a SQL injection vulnerability via the Search parameter at /online-food-order/food-search.php. network low complexity online-food-ordering-system-project CWE-89 critical	9.8

CVE is a registered MITRE Corporation trademark and MITRE's CVE website is the authoritative source of CVE content. CWE is a registered MITRE Corporation trademark and MITRE's CWE website is the authoritative source of CWE content.