Lucene search

CVE-2023-24646

🗓️ 13 Feb 2023 21:14:15Reported by mitreType

cve🔗 web.nvd.nist.gov👁 29 Views🌐 WEB

An arbitrary file upload vulnerability in Food Ordering System v2.0

AI Insights are available for you today

Leverage the power of AI to quickly understand vulnerabilities, impacts, and exploitability

Reporter	Title	Published	Views	Family All 4
Cvelist	CVE-2023-24646	13 Feb 202300:00	–	cvelist
NVD	CVE-2023-24646	13 Feb 202321:15	–	nvd
Prion	Privilege escalation	13 Feb 202321:15	–	prion
Vulnrichment	CVE-2023-24646	13 Feb 202300:00	–	vulnrichment

Nvd

Node

online_food_ordering_system_project online_food_ordering_systemMatch2.0

Source	Link
github	www.github.com/nu11secur1ty/CVE-nu11secur1ty/tree/main/vendors/oretnom23/2023/Food-Ordering-System-v2.0

Parameter	Position	Path	Description	CWE
PHP file	binary	/fos/admin/ajax.php	Arbitrary file upload vulnerability allowing code execution via crafted PHP file.	CWE-434

Transform Your Security Services

Elevate your offerings with Vulners' advanced Vulnerability Intelligence. Contact us for a demo and discover the difference comprehensive, actionable intelligence can make in your security strategy.

Book a live demo

13 Feb 2023 21:15Current

9.5High risk

Vulners AI Score9.5

CVSS39.8

EPSS0.00115

SSVC

CWE-434