Vulnerabilities > Online Food Ordering System Project > High

DATE	CVE	VULNERABILITY TITLE	RISK
2023-02-13	CVE-2023-24647	SQL Injection vulnerability in Online Food Ordering System Project Online Food Ordering System 2.0 Food Ordering System v2.0 was discovered to contain a SQL injection vulnerability via the email parameter. network low complexity online-food-ordering-system-project CWE-89	7.5
2022-05-25	CVE-2022-29651	Unrestricted Upload of File with Dangerous Type vulnerability in Online Food Ordering System Project Online Food Ordering System 1.0 An arbitrary file upload vulnerability in the Select Image function of Online Food Ordering System v1.0 allows attackers to execute arbitrary code via a crafted PHP file. network low complexity online-food-ordering-system-project CWE-434	7.2
2021-10-29	CVE-2021-41644	Unrestricted Upload of File with Dangerous Type vulnerability in Online Food Ordering System Project Online Food Ordering System 2.0 Remote Code Exection (RCE) vulnerability exists in Sourcecodester Online Food Ordering System 2.0 via a maliciously crafted PHP file that bypasses the image upload filters. network low complexity online-food-ordering-system-project CWE-434	7.5

CVE is a registered MITRE Corporation trademark and MITRE's CVE website is the authoritative source of CVE content. CWE is a registered MITRE Corporation trademark and MITRE's CWE website is the authoritative source of CWE content.