Filtered by vendor Projectworlds
Subscribe
Filtered by product Online Food Ordering System
Subscribe
Total
5 CVE
CVE | Vendors | Products | Updated | CVSS v2 | CVSS v3 |
---|---|---|---|---|---|
CVE-2023-45343 | 1 Projectworlds | 1 Online Food Ordering System | 2024-02-05 | N/A | 9.8 CRITICAL |
Online Food Ordering System v1.0 is vulnerable to multiple Unauthenticated SQL Injection vulnerabilities. The 'ticket_id' parameter of the routers/ticket-message.php resource does not validate the characters received and they are sent unfiltered to the database. | |||||
CVE-2023-45336 | 1 Projectworlds | 1 Online Food Ordering System | 2024-02-05 | N/A | 9.8 CRITICAL |
Online Food Ordering System v1.0 is vulnerable to multiple Unauthenticated SQL Injection vulnerabilities. The 'password' parameter of the routers/router.php resource does not validate the characters received and they are sent unfiltered to the database. | |||||
CVE-2023-45342 | 1 Projectworlds | 1 Online Food Ordering System | 2024-02-05 | N/A | 9.8 CRITICAL |
Online Food Ordering System v1.0 is vulnerable to multiple Unauthenticated SQL Injection vulnerabilities. The 'phone' parameter of the routers/register-router.php resource does not validate the characters received and they are sent unfiltered to the database. | |||||
CVE-2023-45340 | 1 Projectworlds | 1 Online Food Ordering System | 2024-02-05 | N/A | 9.8 CRITICAL |
Online Food Ordering System v1.0 is vulnerable to multiple Unauthenticated SQL Injection vulnerabilities. The 'phone' parameter of the routers/details-router.php resource does not validate the characters received and they are sent unfiltered to the database. | |||||
CVE-2023-45341 | 1 Projectworlds | 1 Online Food Ordering System | 2024-02-05 | N/A | 9.8 CRITICAL |
Online Food Ordering System v1.0 is vulnerable to multiple Unauthenticated SQL Injection vulnerabilities. The '*_price' parameter of the routers/menu-router.php resource does not validate the characters received and they are sent unfiltered to the database. |