CVE Search Engine - Security Vulnerabilities and Exploits Search Tool

show all

10 matches found

CVE•added 2026/03/26 3:14 a.m.•7 views

CVE-2026-4839

SourceCodester Food Ordering System 1.0 contains a SQL injection in the Parameter Handler within /purchase.php, triggered by manipulating the custom parameter. Affected component: unknown function in /purchase.php; root cause is improper handling of the custom argument leading to SQL injection. T...

7.5CVSS6.8AI score0.00259EPSS

Exploits0References5

CNNVD•added 2026/03/26 12:0 a.m.•5 views

SourceCodester Food Ordering System SQL注入漏洞

The SourceCodester Food Ordering System is an open-source food ordering system developed by SourceCodester. Version 1.0 of the SourceCodester Food Ordering System has a SQL injection vulnerability. This vulnerability stems from incorrect handling of the custom parameter in the purchase.php file,...

7.5CVSS7.2AI score0.00259EPSS

Exploits0References5

Positive Technologies•added 2026/03/26 12:0 a.m.•7 views

PT-2026-28197

A vulnerability has been found in SourceCodester Food Ordering System 1.0. This affects an unknown function of the file /purchase.php of the component Parameter Handler. The manipulation of the argument custom leads to sql injection. The attack can be initiated remotely. The exploit has been...

7.5CVSS6.8AI score0.00259EPSS

Exploits0References6

CVE•added 2024/06/22 2:0 p.m.•58 views

CVE-2024-6253

The CVE-2024-6253 entry concerns itsourcecode Online Food Ordering System 1.0, where the /purchase.php endpoint is vulnerable via manipulation of the customer parameter, leading to SQL injection. The issue is exploitable remotely, with publicly disclosed exploits. Affected component is the /purch...

9.8CVSS7.7AI score0.00648EPSS

Exploits1References4Affected Software1

Prion•added 2022/11/01 2:15 p.m.•15 views

Sql injection

Fast Food Ordering System v1.0 was discovered to contain a SQL injection vulnerability via the component /fastfood/purchase.php...

5CVSS7.8AI score0.00751EPSS

Exploits1References1Affected Software1

Cvelist•added 2022/11/01 12:0 a.m.•18 views

CVE-2022-43081

Fast Food Ordering System v1.0 was discovered to contain a SQL injection vulnerability via the component /fastfood/purchase.php...

8AI score0.00751EPSS

Exploits1References1

Cvelist•added 2022/11/01 12:0 a.m.•25 views

CVE-2022-43082

A cross-site scripting XSS vulnerability in /fastfood/purchase.php of Fast Food Ordering System v1.0 allows attackers to execute arbitrary web scripts or HTML via a crafted payload injected into the customer parameter...

6AI score0.00473EPSS

Exploits1References1

Vulnrichment•added 2022/11/01 12:0 a.m.•5 views

CVE-2022-43081

Fast Food Ordering System v1.0 was discovered to contain a SQL injection vulnerability via the component /fastfood/purchase.php...

7.8AI score0.00751EPSS

Exploits1References1

CVE•added 2022/11/01 12:0 a.m.•46 views

CVE-2022-43081

CVE-2022-43081 concerns the product Fast Food Ordering System v1.0 , with a documented vulnerability in the /fastfood/purchase.php component that enables a SQL injection . The connected sources consistently identify this issue as a SQL injection affecting the purchase endpoint; no explicit exploi...

7.5CVSS7.7AI score0.00751EPSS

Exploits1References1Affected Software1

Exploit DB•added 2008/06/20 12:0 a.m.•31 views

Jamroom 3.3.5 - Remote File Inclusion

+++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++ Scripts : CMS Jamroom Version: 3.3.5 Discovered By : Cyberlog Scripts site : http://www.jamroom.net/ Download Script : http://www.jamroom.net/index.php?m=tddownload&o=download&fileid=43 Thanks To :...

7.4AI score

Exploits0

Rows per page

Query Builder

Family

Bulletin Type

Min CVSS Score

Date

Order by