Vulnerabilities > Online Food Ordering System Project > Medium

DATE	CVE	VULNERABILITY TITLE	RISK
2024-09-09	CVE-2024-8604	Cross-site Scripting vulnerability in Online Food Ordering System Project Online Food Ordering System 2.0 A vulnerability classified as problematic has been found in SourceCodester Online Food Ordering System 2.0. network low complexity online-food-ordering-system-project CWE-79	6.1
2023-03-14	CVE-2023-27073	Cross-Site Request Forgery (CSRF) vulnerability in Online Food Ordering System Project Online Food Ordering System 1.0 A Cross-Site Request Forgery (CSRF) in Online Food Ordering System v1.0 allows attackers to change user details and credentials via a crafted POST request. network low complexity online-food-ordering-system-project CWE-352	6.5
2023-02-06	CVE-2023-24191	Cross-site Scripting vulnerability in Online Food Ordering System Project Online Food Ordering System 2.0 Online Food Ordering System v2 was discovered to contain a cross-site scripting (XSS) vulnerability via the redirect parameter in signup.php. network low complexity online-food-ordering-system-project CWE-79	6.1
2023-02-06	CVE-2023-24192	Cross-site Scripting vulnerability in Online Food Ordering System Project Online Food Ordering System 2.0 Online Food Ordering System v2 was discovered to contain a cross-site scripting (XSS) vulnerability via the redirect parameter in login.php. network low complexity online-food-ordering-system-project CWE-79	6.1
2023-02-06	CVE-2023-24194	Cross-site Scripting vulnerability in Online Food Ordering System Project Online Food Ordering System 2.0 Online Food Ordering System v2 was discovered to contain a cross-site scripting (XSS) vulnerability via the page parameter in navbar.php. network low complexity online-food-ordering-system-project CWE-79	6.1
2023-02-06	CVE-2023-24195	Cross-site Scripting vulnerability in Online Food Ordering System Project Online Food Ordering System 2.0 Online Food Ordering System v2 was discovered to contain a cross-site scripting (XSS) vulnerability via the page parameter in index.php. network low complexity online-food-ordering-system-project CWE-79	6.1
2023-02-06	CVE-2023-24197	Cross-site Scripting vulnerability in Online Food Ordering System Project Online Food Ordering System 2.0 Online Food Ordering System v2 was discovered to contain a SQL injection vulnerability via the id parameter at view_order.php. network low complexity online-food-ordering-system-project CWE-79	6.1
2023-01-12	CVE-2023-0258	Cross-site Scripting vulnerability in Online Food Ordering System Project Online Food Ordering System 2.0 A vulnerability was found in SourceCodester Online Food Ordering System 2.0. network low complexity online-food-ordering-system-project CWE-79	6.1

CVE is a registered MITRE Corporation trademark and MITRE's CVE website is the authoritative source of CVE content. CWE is a registered MITRE Corporation trademark and MITRE's CWE website is the authoritative source of CWE content.