Vulnerabilities (CVE)

  1. OpenCVE
  2. Vulnerabilities (CVE)
Filtered by vendor Projectworlds Subscribe
Filtered by product Online Food Ordering System
Total 5 CVE
CVE Vendors Products Updated CVSS v2 CVSS v3
CVE-2023-45343 1 Projectworlds 1 Online Food Ordering System 2024-02-05 N/A 9.8 CRITICAL
Online Food Ordering System v1.0 is vulnerable to multiple Unauthenticated SQL Injection vulnerabilities. The 'ticket_id' parameter of the routers/ticket-message.php resource does not validate the characters received and they are sent unfiltered to the database.
CVE-2023-45336 1 Projectworlds 1 Online Food Ordering System 2024-02-05 N/A 9.8 CRITICAL
Online Food Ordering System v1.0 is vulnerable to multiple Unauthenticated SQL Injection vulnerabilities. The 'password' parameter of the routers/router.php resource does not validate the characters received and they are sent unfiltered to the database.
CVE-2023-45342 1 Projectworlds 1 Online Food Ordering System 2024-02-05 N/A 9.8 CRITICAL
Online Food Ordering System v1.0 is vulnerable to multiple Unauthenticated SQL Injection vulnerabilities. The 'phone' parameter of the routers/register-router.php resource does not validate the characters received and they are sent unfiltered to the database.
CVE-2023-45340 1 Projectworlds 1 Online Food Ordering System 2024-02-05 N/A 9.8 CRITICAL
Online Food Ordering System v1.0 is vulnerable to multiple Unauthenticated SQL Injection vulnerabilities. The 'phone' parameter of the routers/details-router.php resource does not validate the characters received and they are sent unfiltered to the database.
CVE-2023-45341 1 Projectworlds 1 Online Food Ordering System 2024-02-05 N/A 9.8 CRITICAL
Online Food Ordering System v1.0 is vulnerable to multiple Unauthenticated SQL Injection vulnerabilities. The '*_price' parameter of the routers/menu-router.php resource does not validate the characters received and they are sent unfiltered to the database.