3 matches found
CVE-2023-45345
Online Food Ordering System v1.0 is vulnerable to multiple Unauthenticated SQL Injection vulnerabilities. The 'deleted' parameter of the routers/user-router.php resource does not validate the characters received and they are sent unfiltered to the database...
CVE-2023-45345
CVE-2023-45345 : Multiple unauthenticated SQL Injection vulnerabilities in Online Food Ordering System v1.0. The issue centers on the routers/user-router.php resource, where the custom parameter named ‘*_deleted’ is not properly validated, sending unfiltered input to the database. Root cause: uns...
CVE-2023-45345 Online Food Ordering System v1.0 - Multiple Unauthenticated SQL Injections (SQLi)
Online Food Ordering System v1.0 is vulnerable to multiple Unauthenticated SQL Injection vulnerabilities. The 'deleted' parameter of the routers/user-router.php resource does not validate the characters received and they are sent unfiltered to the database...