4 matches found
CVE-2025-12302 code-projects Simple Food Ordering System editproduct.php cross site scripting
A vulnerability was detected in code-projects Simple Food Ordering System 1.0. The affected element is an unknown function of the file /editproduct.php. Performing manipulation of the argument pname/category/price results in cross site scripting. The attack may be initiated remotely. The exploit ...
EUVD-2025-36232
A vulnerability was detected in code-projects Simple Food Ordering System 1.0. The affected element is an unknown function of the file /editproduct.php. Performing manipulation of the argument pname/category/price results in cross site scripting. The attack may be initiated remotely. The exploit ...
CVE-2025-12302
The CVE-2025-12302 entry concerns code-projects Simple Food Ordering System 1.0, with a cross-site scripting vulnerability in /editproduct.php. The flaw arises from unsafely handling user-supplied data in the pname, category, and price parameters, enabling injected script through these fields. Re...
CVE-2022-34950
Pharmacy Management System v1.0 was discovered to contain a SQL injection vulnerability via the id parameter at editproduct.php...