Search Results | AttackerKB

24 Total Results

Displaying 21-24 of 24

Attacker Value

Unknown

CVE-2022-36759

Disclosure Date: September 02, 2022 (last updated October 08, 2023)

Online Food Ordering System v1.0 was discovered to contain a SQL injection vulnerability via the component /dishes.php?res_id=.

Attacker Value

Unknown

CVE-2022-29651

Disclosure Date: May 25, 2022 (last updated February 23, 2025)

An arbitrary file upload vulnerability in the Select Image function of Online Food Ordering System v1.0 allows attackers to execute arbitrary code via a crafted PHP file.

Attack Vector: Network Privileges: High User Interaction: None

Attacker Value

Unknown

CVE-2022-29650

Disclosure Date: May 25, 2022 (last updated February 23, 2025)

Online Food Ordering System v1.0 was discovered to contain a SQL injection vulnerability via the Search parameter at /online-food-order/food-search.php.

Attack Vector: Network Privileges: None User Interaction: None

Attacker Value

Unknown

CVE-2021-41644

Disclosure Date: October 29, 2021 (last updated February 23, 2025)

Remote Code Exection (RCE) vulnerability exists in Sourcecodester Online Food Ordering System 2.0 via a maliciously crafted PHP file that bypasses the image upload filters.

Attack Vector: Network Privileges: None User Interaction: None

24 Total Results

Displaying 21-24 of 24

Unknown

CVE-2022-36759

Unknown

CVE-2022-29651

Unknown

CVE-2022-29650

Unknown

CVE-2021-41644

Quick Cookie Notification