Lucene search
K

8 matches found

RedhatCVE
RedhatCVE
added 2026/01/09 11:25 a.m.8 views

CVE-2021-28294

Online Ordering System 1.0 is vulnerable to arbitrary file upload through /onlineordering/GPST/store/initiateorder.php, which may lead to remote code execution RCE...

9.8CVSS8AI score0.03728EPSS
Exploits1References1
RedhatCVE
RedhatCVE
added 2025/05/23 7:46 a.m.5 views

CVE-2024-28294

Limbas up to v5.2.14 was discovered to contain a SQL injection vulnerability via the ftid parameter...

6.5CVSS8.3AI score0.00595EPSS
Exploits1References1
OSV
OSV
added 2024/04/29 9:15 p.m.4 views

CVE-2024-28294

Limbas up to v5.2.14 was discovered to contain a SQL injection vulnerability via the ftid parameter...

6.5CVSS5.8AI score0.00595EPSS
Exploits1References1
Circl
Circl
added 2021/03/16 11:30 p.m.5 views

CVE-2021-28294

creationtimestamp| type| source ---|---|--- 2021-03-16 23:30:17+00:00| seen| https://t.me/cibsecurity/24978...

9.8CVSS8.7AI score0.03728EPSS
Exploits1References1
Cvelist
Cvelist
added 2021/03/16 7:54 p.m.21 views

CVE-2021-28294

Online Ordering System 1.0 is vulnerable to arbitrary file upload through /onlineordering/GPST/store/initiateorder.php, which may lead to remote code execution RCE...

10AI score0.03728EPSS
Exploits1References1
CVE
CVE
added 2021/03/16 7:54 p.m.50 views

CVE-2021-28294

CVE-2021-28294 affects Online Ordering System 1.0. The vulnerability is an arbitrary file upload via the endpoint /onlineordering/GPST/store/initiateorder.php, which may lead to remote code execution (RCE). Several connected sources corroborate the RCE risk and the specific upload vector; an expl...

9.8CVSS9.7AI score0.03728EPSS
Exploits1References1Affected Software1
Cvelist
Cvelist
added 2021/01/22 7:44 p.m.10 views

CVE-2020-28294

...

Exploits0
CVE
CVE
added 2021/01/22 7:44 p.m.25 views

CVE-2020-28294

CVE-2020-28294 is rejected/not used; this candidate does not represent an active vulnerability entry.

6.9AI score
Exploits0
Rows per page
Query Builder