CVE-2022-36581
Online Ordering System v2.3.2 contains a SQL injection vulnerability in the /admin/login.php endpoint, exploitable via the user_email parameter. The CVE-2022-36581 entry has a base score of 7.5 (HIGH) with network access and no user interaction required, affecting confidentiality but not integrit...