3 matches found
CVE-2021-28295
Online Ordering System 1.0 is vulnerable to unauthenticated SQL injection through /onlineordering/GPST/admin/design.php, which may lead to database information disclosure...
Online Ordering System SQL Injection (CVE-2021-28295)
An SQL injection vulnerability exists in Online Ordering System. Successful exploitation of this vulnerability would allow a remote attacker to execute arbitrary SQL commands on the affected system...
CVE-2021-28295
CVE-2021-28295 affects Online Ordering System 1.0. The vulnerability is an unauthenticated SQL injection in the design.php path under /onlineordering/GPST/admin/ that may disclose database information. Multiple sources (NVD, Red Hat, PRION, CVE listings) corroborate the issue and timing, with exp...