Lucene search
China National Vulnerability DatabaseCNVD-2023-07974HistoryFeb 08, 2023 - 12:00 a.m.
Online Food Ordering System SQL Injection Vulnerability (CNVD-2023-07974)
2023-02-0800:00:00
China National Vulnerability Database
www.cnvd.org.cn
9
online food ordering system
sql injection
validation
view_order.php
sensitive database data
cnvd-2023-07974
0.001 Low
EPSS
Percentile
32.4%
Online Food Ordering System is an online food ordering system. An SQL injection vulnerability exists in Online Food Ordering System, which stems from a lack of validation of externally entered SQL statements in the id parameter of the view_order.php page. An attacker could use this vulnerability to execute illegal SQL commands to steal sensitive database data.
| CPE | Name | Operator | Version |
|---|---|---|---|
| online food ordering system online food ordering system | eq | 2.0 |
Related
cvelist
cvelist
CVE-2023-24197
2023-02-06 00:00:00
nvd
nvd
CVE-2023-24197
2023-02-06 15:15:10
cve
cve
CVE-2023-24197
2023-02-06 15:15:10
prion
prion
Sql injection
2023-02-06 15:15:00