Vulnerabilities > Online Pizza Ordering System Project > Online Pizza Ordering System

DATE CVE VULNERABILITY TITLE RISK
2023-07-10 CVE-2023-37150 Cross-site Scripting vulnerability in Online Pizza Ordering System Project Online Pizza Ordering System 1.0
Sourcecodester Online Pizza Ordering System v1.0 has a Cross-site scripting (XSS) vulnerability in "/admin/index.php?page=categories" Category item.
6.1
2023-05-08 CVE-2023-30092 SQL Injection vulnerability in Online Pizza Ordering System Project Online Pizza Ordering System 1.0
SourceCodester Online Pizza Ordering System v1.0 is vulnerable to SQL Injection via the QTY parameter.
network
low complexity
online-pizza-ordering-system-project CWE-89
critical
9.8
2023-04-23 CVE-2023-2246 Unrestricted Upload of File with Dangerous Type vulnerability in Online Pizza Ordering System Project Online Pizza Ordering System 1.0
A vulnerability has been found in SourceCodester Online Pizza Ordering System 1.0 and classified as critical.
network
low complexity
online-pizza-ordering-system-project CWE-434
critical
9.8
2023-03-17 CVE-2023-1460 Improper Authentication vulnerability in Online Pizza Ordering System Project Online Pizza Ordering System 1.0
A vulnerability was found in SourceCodester Online Pizza Ordering System 1.0.
network
low complexity
online-pizza-ordering-system-project CWE-287
critical
9.8
2023-03-17 CVE-2023-1455 SQL Injection vulnerability in Online Pizza Ordering System Project Online Pizza Ordering System 1.0
A vulnerability classified as critical was found in SourceCodester Online Pizza Ordering System 1.0.
8.1
2023-03-14 CVE-2023-1392 Unrestricted Upload of File with Dangerous Type vulnerability in Online Pizza Ordering System Project Online Pizza Ordering System 1.0
A vulnerability has been found in SourceCodester Online Pizza Ordering System 1.0 and classified as critical.
network
low complexity
online-pizza-ordering-system-project CWE-434
critical
9.8
2023-03-13 CVE-2023-1364 SQL Injection vulnerability in Online Pizza Ordering System Project Online Pizza Ordering System 1.0
A vulnerability has been found in SourceCodester Online Pizza Ordering System 1.0 and classified as critical.
7.5
2023-03-13 CVE-2023-1365 SQL Injection vulnerability in Online Pizza Ordering System Project Online Pizza Ordering System 1.0
A vulnerability was found in SourceCodester Online Pizza Ordering System 1.0 and classified as critical.
7.5
2023-03-09 CVE-2023-27207 SQL Injection vulnerability in Online Pizza Ordering System Project Online Pizza Ordering System 1.0
Online Pizza Ordering System 1.0 was discovered to contain a SQL injection vulnerability via the id parameter at /admin/manage_user.php.
network
low complexity
online-pizza-ordering-system-project CWE-89
critical
9.8
2023-03-09 CVE-2023-27208 Cross-site Scripting vulnerability in Online Pizza Ordering System Project Online Pizza Ordering System 1.0
A cross-site scripting (XSS) vulnerability in /php-opos/login.php of Online Pizza Ordering System 1.0 allows attackers to execute arbitrary web scripts or HTML via a crafted payload injected into the redirect parameter.
6.1