Vulnerabilities > Simple Food Website Project

DATE	CVE	VULNERABILITY TITLE	RISK
2022-05-23	CVE-2022-30015	Cross-site Scripting vulnerability in Simple Food Website Project Simple Food Website 1.0 In Simple Food Website 1.0, a moderation can put the Cross Site Scripting Payload in any of the fields on http://127.0.0.1:1234/food/admin/all_users.php like Full Username, etc .This causes stored xss. network simple-food-website-project CWE-79	3.5
2022-05-23	CVE-2022-30014	Cross-Site Request Forgery (CSRF) vulnerability in Simple Food Website Project Simple Food Website 1.0 Lumidek Associates Simple Food Website 1.0 is vulnerable to Cross Site Request Forgery (CSRF) which allows anyone to takeover admin/moderater account. network simple-food-website-project CWE-352	6.8
2021-07-30	CVE-2021-34166	SQL Injection vulnerability in Simple Food Website Project Simple Food Website 1.0 A SQL INJECTION vulnerability in Sourcecodester Simple Food Website 1.0 allows a remote attacker to Bypass Authentication and become Admin. network low complexity simple-food-website-project CWE-89	7.5

Vulnerabilities > Simple Food Website Project {"@context":"https://schema.org","@type":"BreadcrumbList","itemListElement":[{"@type":"ListItem","position":1,"name":"Vulnerabilities","item":"https://cyber.vumetric.com/vulns/"},{"@type":"ListItem","position":2,"name":"Simple Food Website Project"}]}