Vulnerabilities (CVE)

Filtered by vendor Online Food Ordering Web App Project Subscribe
Total 1 CVE
CVE Vendors Products Updated CVSS v2 CVSS v3
CVE-2021-41647 1 Online Food Ordering Web App Project 1 Online Food Ordering Web App 2024-11-21 6.4 MEDIUM 9.1 CRITICAL
An un-authenticated error-based and time-based blind SQL injection vulnerability exists in Kaushik Jadhav Online Food Ordering Web App 1.0. An attacker can exploit the vulnerable "username" parameter in login.php and retrieve sensitive database information, as well as add an administrative user.