CVE-2022-30795
Online Ordering System v1.0 by oretnom23 is vulnerable to SQL Injection in admin/editproductimage.php. The root cause is lack of input validation on that endpoint, enabling an attacker to manipulate SQL queries and potentially access or modify database data. CVSS metrics in the initial entry indi...