Lucene search
K

555 matches found

RedhatCVE
RedhatCVE
added 2026/06/05 7:49 p.m.10 views

CVE-2026-5811

A vulnerability was identified in SourceCodester Online Food Ordering System 1.0. Affected by this issue is the function saveproduct of the file /Actions.php of the component POST Parameter Handler. Such manipulation of the argument price leads to business logic errors. The attack may be performe...

5.5CVSS5.7AI score0.00246EPSS
Exploits0References1
Vulnrichment
Vulnrichment
added 2026/06/03 12:15 a.m.9 views

CVE-2026-10694 SourceCodester Online Food Ordering System index.php include file inclusion

A vulnerability was detected in SourceCodester Online Food Ordering System 2.0. Affected by this issue is the function include of the file /index.php. The manipulation of the argument page results in file inclusion. The attack can be launched remotely. The exploit is now public and may be used...

7.5CVSS6.9AI score0.00302EPSS
Exploits0References6
CNNVD
CNNVD
added 2026/06/03 12:0 a.m.7 views

SourceCodester Online Food Ordering System 安全漏洞

The SourceCodester Online Food Ordering System is an open-source online meal ordering system developed by SourceCodester. Version 2.0 of the SourceCodester Online Food Ordering System has a security vulnerability. This vulnerability stems from the handling of the page parameter in the include...

7.5CVSS7.3AI score0.00302EPSS
Exploits0References6
Positive Technologies
Positive Technologies
added 2026/06/03 12:0 a.m.15 views

PT-2026-45890

Name of the Vulnerable Software and Affected Versions SourceCodester Online Food Ordering System version 2.0 Description A remote file inclusion issue exists in the /index.php file. The include function is susceptible to manipulation via the page argument, allowing an attacker to include arbitrar...

7.5CVSS7.2AI score0.00302EPSS
Exploits0References10
Vulnrichment
Vulnrichment
added 2026/04/08 10:15 p.m.3 views

CVE-2026-5811 SourceCodester Online Food Ordering System POST Parameter Actions.php save_product logic error

A vulnerability was identified in SourceCodester Online Food Ordering System 1.0. Affected by this issue is the function saveproduct of the file /Actions.php of the component POST Parameter Handler. Such manipulation of the argument price leads to business logic errors. The attack may be performe...

5.5CVSS5.8AI score0.00246EPSS
Exploits0References5
CNNVD
CNNVD
added 2026/04/08 12:0 a.m.10 views

SourceCodester Online Food Ordering System 安全漏洞

The SourceCodester Online Food Ordering System is an open-source online ordering system developed by SourceCodester. Version 1.0 of the SourceCodester Online Food Ordering System has a security vulnerability. This vulnerability stems from the handling of the parameter ‘price’ in the ‘saveproduct’...

5.5CVSS6AI score0.00246EPSS
Exploits0References5
RedhatCVE
RedhatCVE
added 2026/04/01 5:0 a.m.4 views

CVE-2026-5157

A vulnerability was identified in code-projects Online Food Ordering System 1.0. Affected is an unknown function of the file /form/order.php of the component Order Module. Such manipulation of the argument custid leads to cross site scripting. The attack may be performed from remote. The exploit ...

5.3CVSS4.3AI score0.00337EPSS
Exploits0References1
EUVD
EUVD
added 2026/03/31 12:31 a.m.2 views

EUVD-2026-17253

A vulnerability was identified in code-projects Online Food Ordering System 1.0. Affected is an unknown function of the file /form/order.php of the component Order Module. Such manipulation of the argument custid leads to cross site scripting. The attack may be performed from remote. The exploit ...

5.3CVSS4.3AI score0.00337EPSS
Exploits0References6
NVD
NVD
added 2026/03/31 12:16 a.m.6 views

CVE-2026-5157

A vulnerability was identified in code-projects Online Food Ordering System 1.0. Affected is an unknown function of the file /form/order.php of the component Order Module. Such manipulation of the argument custid leads to cross site scripting. The attack may be performed from remote. The exploit ...

5.3CVSS0.00337EPSS
Exploits0References5
Cvelist
Cvelist
added 2026/03/30 11:30 p.m.26 views

CVE-2026-5157 code-projects Online Food Ordering System Order order.php cross site scripting

A vulnerability was identified in code-projects Online Food Ordering System 1.0. Affected is an unknown function of the file /form/order.php of the component Order Module. Such manipulation of the argument custid leads to cross site scripting. The attack may be performed from remote. The exploit ...

5.3CVSS0.00337EPSS
Exploits0References5
Positive Technologies
Positive Technologies
added 2026/03/30 12:0 a.m.5 views

PT-2026-29144

A vulnerability was identified in code-projects Online Food Ordering System 1.0. Affected is an unknown function of the file /form/order.php of the component Order Module. Such manipulation of the argument cust id leads to cross site scripting. The attack may be performed from remote. The exploit...

5.3CVSS4.3AI score0.00337EPSS
Exploits0References6
RedhatCVE
RedhatCVE
added 2026/03/28 4:56 a.m.3 views

CVE-2026-30529

A SQL Injection vulnerability exists in SourceCodester Online Food Ordering System v1.0 in the Actions.php file specifically the saveuser action. The application fails to properly sanitize user input supplied to the "username" parameter. This allows an authenticated attacker to inject malicious S...

8.8CVSS6AI score0.00446EPSS
Exploits1References1
RedhatCVE
RedhatCVE
added 2026/03/28 4:56 a.m.4 views

CVE-2026-30534

A SQL Injection vulnerability exists in SourceCodester Online Food Ordering System v1.0 in admin/managecategory.php via the "id" parameter...

8.3CVSS6AI score0.00328EPSS
Exploits1References1
RedhatCVE
RedhatCVE
added 2026/03/28 4:56 a.m.3 views

CVE-2026-30531

A SQL Injection vulnerability exists in SourceCodester Online Food Ordering System v1.0 in the Actions.php file specifically the savecategory action. The application fails to properly sanitize user input supplied to the "name" parameter. This allows an authenticated attacker to inject malicious S...

8.8CVSS6AI score0.00445EPSS
Exploits1References1
RedhatCVE
RedhatCVE
added 2026/03/27 10:51 p.m.6 views

CVE-2026-4898

A vulnerability was identified in code-projects Online Food Ordering System 1.0. Affected by this vulnerability is an unknown functionality of the file /dbfood/contact.php. The manipulation of the argument Name leads to cross site scripting. It is possible to initiate the attack remotely. The...

5.3CVSS4.3AI score0.00343EPSS
Exploits0References1
EUVD
EUVD
added 2026/03/27 6:31 p.m.3 views

EUVD-2026-16676

A SQL Injection vulnerability exists in SourceCodester Online Food Ordering System v1.0 in the Actions.php file specifically the savecustomer action. The application fails to properly sanitize user input supplied to the "username" parameter. This allows an attacker to inject malicious SQL command...

9.8CVSS6AI score0.00476EPSS
Exploits1References2
EUVD
EUVD
added 2026/03/27 6:31 p.m.4 views

EUVD-2026-16674

A SQL Injection vulnerability exists in SourceCodester Online Food Ordering System v1.0 in the Actions.php file specifically the saveuser action. The application fails to properly sanitize user input supplied to the "username" parameter. This allows an authenticated attacker to inject malicious S...

8.8CVSS6AI score0.00446EPSS
Exploits1References2
EUVD
EUVD
added 2026/03/27 6:31 p.m.5 views

EUVD-2026-16684

A SQL Injection vulnerability exists in SourceCodester Online Food Ordering System v1.0 in admin/managecategory.php via the "id" parameter...

8.3CVSS6AI score0.00328EPSS
Exploits1References2
EUVD
EUVD
added 2026/03/27 6:31 p.m.4 views

EUVD-2026-16682

A SQL Injection vulnerability exists in SourceCodester Online Food Ordering System v1.0 in the admin/manageproduct.php file via the "id" parameter...

9.8CVSS6AI score0.00394EPSS
Exploits1References2
NVD
NVD
added 2026/03/27 4:16 p.m.2 views

CVE-2026-30533

A SQL Injection vulnerability exists in SourceCodester Online Food Ordering System v1.0 in the admin/manageproduct.php file via the "id" parameter...

9.8CVSS0.00394EPSS
Exploits1References1
Rows per page
Query Builder