5 matches found
EUVD-2021-28659
Malicious code in bioql PyPI...
CVE-2021-41647
An un-authenticated error-based and time-based blind SQL injection vulnerability exists in Kaushik Jadhav Online Food Ordering Web App 1.0. An attacker can exploit the vulnerable "username" parameter in login.php and retrieve sensitive database information, as well as add an administrative user...
CVE-2021-41647
An un-authenticated error-based and time-based blind SQL injection vulnerability exists in Kaushik Jadhav Online Food Ordering Web App 1.0. An attacker can exploit the vulnerable "username" parameter in login.php and retrieve sensitive database information, as well as add an administrative user...
CVE-2021-41647
Online-Food-Ordering-Web-App 1.0 by Kaushik Jadhav is affected by an unauthenticated error-based and time-based blind SQL injection in the login.php username parameter. Exploitation allows retrieval of sensitive DB data and the addition of an administrative user. Documented PoCs and payloads (inc...
CVE-2021-41647
An un-authenticated error-based and time-based blind SQL injection vulnerability exists in Kaushik Jadhav Online Food Ordering Web App 1.0. An attacker can exploit the vulnerable "username" parameter in login.php and retrieve sensitive database information, as well as add an administrative user...