Lucene search
K

9 matches found

RedhatCVE
RedhatCVE
added 2026/05/26 8:15 p.m.12 views

CVE-2026-9445

A flaw has been found in SourceCodester Simple POS and Inventory System 1.0. Impacted is an unknown function of the file /admin/addproduct.php of the component File Extension Handler. This manipulation of the argument image causes unrestricted upload. Remote exploitation of the attack is possible...

6.5CVSS6.2AI score0.00261EPSS
Exploits0References1
Vulnrichment
Vulnrichment
added 2026/05/25 9:15 a.m.9 views

CVE-2026-9445 SourceCodester Simple POS and Inventory System File Extension addproduct.php unrestricted upload

A flaw has been found in SourceCodester Simple POS and Inventory System 1.0. Impacted is an unknown function of the file /admin/addproduct.php of the component File Extension Handler. This manipulation of the argument image causes unrestricted upload. Remote exploitation of the attack is possible...

6.5CVSS6.2AI score0.00261EPSS
Exploits0References5
RedhatCVE
RedhatCVE
added 2025/10/29 7:32 a.m.4 views

CVE-2025-12378

A security flaw has been discovered in code-projects Simple Food Ordering System 1.0. This issue affects some unknown processing of the file /addproduct.php. Performing manipulation of the argument photo results in unrestricted upload. The attack may be initiated remotely. The exploit has been...

9.8CVSS7.3AI score0.00479EPSS
Exploits1References1
OSV
OSV
added 2025/10/28 6:15 a.m.4 views

CVE-2025-12378

A security flaw has been discovered in code-projects Simple Food Ordering System 1.0. This issue affects some unknown processing of the file /addproduct.php. Performing manipulation of the argument photo results in unrestricted upload. The attack may be initiated remotely. The exploit has been...

9.8CVSS5.6AI score0.00479EPSS
Exploits1References5
OSV
OSV
added 2025/10/27 5:15 p.m.3 views

CVE-2025-12299

A security flaw has been discovered in code-projects Simple Food Ordering System 1.0. This vulnerability affects unknown code of the file /addproduct.php. The manipulation of the argument pname/category/price results in cross site scripting. It is possible to launch the attack remotely. The explo...

6.1CVSS4.3AI score
Exploits0References5
CNNVD
CNNVD
added 2025/10/27 12:0 a.m.3 views

Code-Projects Simple Food Ordering System 代码注入漏洞

Simple Food Ordering System is a simple food ordering system. Simple Food Ordering System suffers from a cross-site scripting vulnerability that stems from the lack of effective filtering and escaping of user-supplied data in the parameter pname/category/price in the file /addproduct.php, which c...

6.1CVSS5.9AI score0.00356EPSS
Exploits1References6
RedhatCVE
RedhatCVE
added 2025/10/12 7:19 p.m.6 views

CVE-2025-11612

A vulnerability has been found in code-projects Simple Food Ordering System 1.0. This impacts an unknown function of the file /addproduct.php. The manipulation of the argument Category leads to sql injection. The attack can be initiated remotely. The exploit has been disclosed to the public and m...

8.8CVSS7AI score0.00302EPSS
Exploits1References1
OSV
OSV
added 2024/06/27 1:16 p.m.3 views

CVE-2024-6373

A vulnerability has been found in itsourcecode Online Food Ordering System up to 1.0 and classified as critical. This vulnerability affects unknown code of the file /addproduct.php. The manipulation of the argument photo leads to unrestricted upload. The attack can be initiated remotely. The...

9.8CVSS6.7AI score
Exploits0References4
Positive Technologies
Positive Technologies
added 2024/06/27 12:0 a.m.5 views

PT-2024-37577 · Unknown · Sourcecodester Online Food Ordering System

Name of the Vulnerable Software and Affected Versions: itsourcecode Online Food Ordering System version 1.0 Description: A critical issue has been found in the itsourcecode Online Food Ordering System, affecting the file /addproduct.php. The manipulation of the photo argument leads to unrestricte...

9.8CVSS7.1AI score0.00867EPSS
Exploits1References8
Rows per page
Query Builder