97 matches found
CVE-2022-30015
In Simple Food Website 1.0, a moderation can put the Cross Site Scripting Payload in any of the fields on http://127.0.0.1:1234/food/admin/allusers.php like Full Username, etc .This causes stored xss...
Cross site scripting
In Simple Food Website 1.0, a moderation can put the Cross Site Scripting Payload in any of the fields on http://127.0.0.1:1234/food/admin/allusers.php like Full Username, etc .This causes stored xss...
CVE-2022-30015
In CVE-2022-30015, a stored XSS exists in Simple Food Website 1.0. The vulnerability arises when a moderator submits payloads in any input field on http://127.0.0.1:1234/food/admin/all_users.php (e.g., Full Username), leading to stored cross-site scripting. Affected software/component: Simple Foo...
CVE-2022-30015
In Simple Food Website 1.0, a moderation can put the Cross Site Scripting Payload in any of the fields on http://127.0.0.1:1234/food/admin/allusers.php like Full Username, etc .This causes stored xss...
CVE-2022-30014
Lumidek Associates Simple Food Website 1.0 is vulnerable to Cross Site Request Forgery CSRF which allows anyone to takeover admin/moderater account...
CVE-2022-30014
Lumidek Associates Simple Food Website 1.0 is vulnerable to Cross Site Request Forgery CSRF which allows anyone to takeover admin/moderater account...
CVE-2022-30014
Lumidek Associates Simple Food Website 1.0 is vulnerable to Cross Site Request Forgery CSRF which allows anyone to takeover admin/moderater account...
CVE-2022-30014
CVE-2022-30014 affects Lumidek Associates Simple Food Website 1.0. The vulnerability is a Cross Site Request Forgery (CSRF) that can allow an attacker to take over the administrator/moderator account because the web application does not adequately validate requests from a trusted user. Root cause...
CVE-2022-30014
Lumidek Associates Simple Food Website 1.0 is vulnerable to Cross Site Request Forgery CSRF which allows anyone to takeover admin/moderater account...
Lumidek Associates Simple Food Website 跨站脚本漏洞
Lumidek Associates Simple Food Website is Simple Food Website CMS. A cross-site scripting vulnerability exists in Lumidek Associates Simple Food Website 1.0, which stems from a lack of filtering and escaping of field data in food/admin/allusers.php. The vulnerability can be exploited to conduct a...
SourceCodester Simple Food Website SQL Injection Vulnerability
SourceCodester Simple Food Website is a CMS by SourceCodester, Inc. developed using PHP and MySQL database. sourcecodester Basic Shopping Cart is vulnerable to SQL injection, which can be exploited by attackers to bypass authentication Become an administrator...
CVE-2021-34166
A SQL INJECTION vulnerability in Sourcecodester Simple Food Website 1.0 allows a remote attacker to Bypass Authentication and become Admin...
CVE-2021-34166
A SQL INJECTION vulnerability in Sourcecodester Simple Food Website 1.0 allows a remote attacker to Bypass Authentication and become Admin...
Sql injection
A SQL INJECTION vulnerability in Sourcecodester Simple Food Website 1.0 allows a remote attacker to Bypass Authentication and become Admin...
SourceCodester Simple Food Website SQL注入漏洞
SourceCodester Simple Food Website is a CMS by SourceCodester, Inc. developed using PHP and MySQL database. sourcecodester Basic Shopping Cart is vulnerable to SQL injection, which can be exploited by attackers to bypass authentication Become an administrator...
CVE-2021-34166
CVE-2021-34166 concerns Sourcecodester Simple Food Website 1.0, where a SQL injection vulnerability in the application enables a remote attacker to bypass authentication and gain admin privileges. The NVD entry documents a high/critical impact profile (CVSS v3.1: 9.8, sequence NETWORK/LOW complex...
CVE-2021-34166
A SQL INJECTION vulnerability in Sourcecodester Simple Food Website 1.0 allows a remote attacker to Bypass Authentication and become Admin...