3 matches found
CVE-2023-45338
Online Food Ordering System v1.0 is vulnerable to multiple Unauthenticated SQL Injection vulnerabilities. The 'id' parameter of the routers/add-ticket.php resource does not validate the characters received and they are sent unfiltered to the database...
CVE-2023-45338 Online Food Ordering System v1.0 - Multiple Unauthenticated SQL Injections (SQLi)
Online Food Ordering System v1.0 is vulnerable to multiple Unauthenticated SQL Injection vulnerabilities. The 'id' parameter of the routers/add-ticket.php resource does not validate the characters received and they are sent unfiltered to the database...
CVE-2023-45338
The CVE-2023-45338 entry concerns Online Food Ordering System v1.0, with multiple unauthenticated SQL Injection flaws in the routers/add-ticket.php id parameter. The root cause is insufficient input validation, sending unfiltered input to the database. Documented impact is high on confidentiality...