CVE Search Engine - Security Vulnerabilities and Exploits Search Tool

show all

53 matches found

EUVD•added 2026/03/22 3:30 a.m.•3 views

EUVD-2026-14266

A security vulnerability has been detected in code-projects Simple Food Ordering System up to 1.0. Affected by this vulnerability is an unknown functionality of the file /food/sql/food.sql of the component Database Backup Handler. The manipulation leads to files or directories accessible. It is...

6.9CVSS5.5AI score0.00056EPSS

Exploits1References6

NVD•added 2026/03/22 3:16 a.m.•1 views

CVE-2026-4533

A vulnerability was detected in code-projects Simple Food Ordering System 1.0. Affected by this issue is some unknown functionality of the file all-tickets.php. The manipulation of the argument Status results in sql injection. It is possible to launch the attack remotely. The exploit is now publi...

8.8CVSS0.00044EPSS

Exploits1References5

NVD•added 2026/03/22 2:16 a.m.•3 views

CVE-2026-4532

7.5CVSS0.00056EPSS

Exploits1References5

ATTACKERKB•added 2026/03/22 2:2 a.m.•1 views

CVE-2026-4533

6.5CVSS6.5AI score0.00044EPSS

Exploits1References5Affected Software1

CVE•added 2026/03/22 2:2 a.m.•8 views

CVE-2026-4533

CVE-2026-4533 affects code-projects Simple Food Ordering System 1.0. The vulnerability is in the all-tickets.php file where manipulating the Status parameter results in an SQL injection, with remote exploitation possible. Exploitation details are reported across multiple sources (NVD, Red Hat, CI...

8.8CVSS6.5AI score0.00044EPSS

Exploits1References5Affected Software1

Cvelist•added 2026/03/22 2:2 a.m.•24 views

CVE-2026-4533 code-projects Simple Food Ordering System all-tickets.php sql injection

6.5CVSS0.00044EPSS

Exploits1References5

EUVD•added 2025/11/24 12:30 a.m.•2 views

EUVD-2025-198589

A vulnerability was determined in code-projects Simple Food Ordering System 1.0. Affected by this issue is some unknown functionality of the file /listorder.php. Executing manipulation of the argument ID can lead to sql injection. The attack may be launched remotely. The exploit has been publicly...

6.5CVSS6.6AI score0.00027EPSS

Exploits1References6

NVD•added 2025/11/23 10:16 p.m.•4 views

CVE-2025-13571

8.8CVSS0.00027EPSS

Exploits1References5

Cvelist•added 2025/11/23 10:2 p.m.•8 views

CVE-2025-13571 code-projects Simple Food Ordering System listorder.php sql injection

6.5CVSS0.00027EPSS

Exploits1References5

RedhatCVE•added 2025/10/29 7:32 a.m.•2 views

CVE-2025-12378

A security flaw has been discovered in code-projects Simple Food Ordering System 1.0. This issue affects some unknown processing of the file /addproduct.php. Performing manipulation of the argument photo results in unrestricted upload. The attack may be initiated remotely. The exploit has been...

9.8CVSS7.3AI score0.00061EPSS

Exploits1References1

RedhatCVE•added 2025/10/28 6:52 p.m.•2 views

CVE-2025-12302

A vulnerability was detected in code-projects Simple Food Ordering System 1.0. The affected element is an unknown function of the file /editproduct.php. Performing manipulation of the argument pname/category/price results in cross site scripting. The attack may be initiated remotely. The exploit ...

6.1CVSS5.6AI score0.00038EPSS

Exploits1References1

RedhatCVE•added 2025/10/28 5:53 p.m.•1 views

CVE-2025-12300

A weakness has been identified in code-projects Simple Food Ordering System 1.0. This issue affects some unknown processing of the file /addcategory.php. This manipulation of the argument cname causes cross site scripting. The attack can be initiated remotely. The exploit has been made available ...

6.1CVSS5.7AI score0.00038EPSS

Exploits1References1

Cvelist•added 2025/10/28 5:32 a.m.•7 views

CVE-2025-12378 code-projects Simple Food Ordering System addproduct.php unrestricted upload

7.5CVSS0.00061EPSS

Exploits1References5

OSV•added 2025/10/27 6:15 p.m.•0 views

CVE-2025-12301

A security vulnerability has been detected in code-projects Simple Food Ordering System 1.0. Impacted is an unknown function of the file /editproduct.php. Such manipulation of the argument photo leads to unrestricted upload. The attack can be launched remotely. The exploit has been disclosed...

9.8CVSS5.6AI score0.00061EPSS

Exploits1References5

OSV•added 2025/10/27 6:15 p.m.•1 views

CVE-2025-12302

6.1CVSS4.2AI score0.00038EPSS

Exploits1References5

OSV•added 2025/10/27 6:15 p.m.•1 views

CVE-2025-12300

6.1CVSS4.2AI score0.00038EPSS

Exploits1References5

CVE•added 2025/10/27 5:32 p.m.•7 views

CVE-2025-12301

CVE-2025-12301 affects the Simple Food Ordering System 1.0, specifically the file /editproduct.php where the photo parameter can be manipulated to trigger an unrestricted file upload vulnerability. The connected documents describe a lack of validation on uploaded files and indicate the issue can ...

9.8CVSS7.2AI score0.00061EPSS

Exploits1References5Affected Software1

EUVD•added 2025/10/27 5:32 p.m.•1 views

EUVD-2025-36222

5.3CVSS5.3AI score0.00038EPSS

Exploits1References6

OSV•added 2025/10/27 5:15 p.m.•0 views

CVE-2025-12298

A vulnerability was identified in code-projects Simple Food Ordering System 1.0. This affects an unknown part of the file /editcategory.php. The manipulation of the argument pname leads to cross site scripting. It is possible to initiate the attack remotely. The exploit is publicly available and...

6.1CVSS4.3AI score0.00038EPSS

Exploits1References5

Vulnrichment•added 2025/10/27 5:2 p.m.•1 views

CVE-2025-12299 code-projects Simple Food Ordering System addproduct.php cross site scripting

A security flaw has been discovered in code-projects Simple Food Ordering System 1.0. This vulnerability affects unknown code of the file /addproduct.php. The manipulation of the argument pname/category/price results in cross site scripting. It is possible to launch the attack remotely. The explo...

5.3CVSS4AI score0.00038EPSS

Exploits1References5

Rows per page

Query Builder

Family

Bulletin Type

Min CVSS Score

Date

Order by