24 matches found
CVE-2024-1268
A vulnerability, which was classified as critical, was found in CodeAstro Restaurant POS System 1.0. This affects an unknown part of the file updateproduct.php. The manipulation leads to unrestricted upload. It is possible to initiate the attack remotely. The exploit has been disclosed to the...
CVE-2022-43086
Restaurant POS System v1.0 was discovered to contain a SQL injection vulnerability via updatecustomer.php...
CVE-2022-43085
An arbitrary file upload vulnerability in addproduct.php of Restaurant POS System v1.0 allows attackers to execute arbitrary code via a crafted PHP file...
CVE-2024-1268
A vulnerability, which was classified as critical, was found in CodeAstro Restaurant POS System 1.0. This affects an unknown part of the file updateproduct.php. The manipulation leads to unrestricted upload. It is possible to initiate the attack remotely. The exploit has been disclosed to the...
Design/Logic Flaw
A vulnerability, which was classified as critical, was found in CodeAstro Restaurant POS System 1.0. This affects an unknown part of the file updateproduct.php. The manipulation leads to unrestricted upload. It is possible to initiate the attack remotely. The exploit has been disclosed to the...
CVE-2024-1268
CVE-2024-1268 concerns CodeAstro Restaurant POS System 1.0. The vulnerability affects an unknown part of the file update_product.php, enabling an unrestricted upload that could be triggered remotely. Multiple sources (NVD, Red Hat, CVE listings, PRION) describe it as a critical issue with potenti...
CVE-2024-1268 CodeAstro Restaurant POS System update_product.php unrestricted upload
A vulnerability, which was classified as critical, was found in CodeAstro Restaurant POS System 1.0. This affects an unknown part of the file updateproduct.php. The manipulation leads to unrestricted upload. It is possible to initiate the attack remotely. The exploit has been disclosed to the...
CVE-2024-1268 CodeAstro Restaurant POS System update_product.php unrestricted upload
A vulnerability, which was classified as critical, was found in CodeAstro Restaurant POS System 1.0. This affects an unknown part of the file updateproduct.php. The manipulation leads to unrestricted upload. It is possible to initiate the attack remotely. The exploit has been disclosed to the...
CVE-2024-1267
A vulnerability, which was classified as problematic, has been found in CodeAstro Restaurant POS System 1.0. Affected by this issue is some unknown functionality of the file createaccount.php. The manipulation of the argument Full Name leads to cross site scripting. The attack may be launched...
Cross site scripting
A vulnerability, which was classified as problematic, has been found in CodeAstro Restaurant POS System 1.0. Affected by this issue is some unknown functionality of the file createaccount.php. The manipulation of the argument Full Name leads to cross site scripting. The attack may be launched...
CVE-2024-1267 CodeAstro Restaurant POS System create_account.php cross site scripting
A vulnerability, which was classified as problematic, has been found in CodeAstro Restaurant POS System 1.0. Affected by this issue is some unknown functionality of the file createaccount.php. The manipulation of the argument Full Name leads to cross site scripting. The attack may be launched...
CVE-2024-1267
The connected documents confirm CVE-2024-1267 affects CodeAstro Restaurant POS System v1.0, where the file create_account.php is vulnerable through manipulation of the Full Name parameter, causing cross-site scripting. The vulnerability can be exploited remotely and the exploit has been publicly ...
CVE-2022-43085
An arbitrary file upload vulnerability in addproduct.php of Restaurant POS System v1.0 allows attackers to execute arbitrary code via a crafted PHP file...
CVE-2022-43086
Restaurant POS System v1.0 was discovered to contain a SQL injection vulnerability via updatecustomer.php...
Sql injection
Restaurant POS System v1.0 was discovered to contain a SQL injection vulnerability via updatecustomer.php...
Design/Logic Flaw
An arbitrary file upload vulnerability in addproduct.php of Restaurant POS System v1.0 allows attackers to execute arbitrary code via a crafted PHP file...
CVE-2022-43086
CVE-2022-43086 affects Restaurant POS System v1.0. A SQL injection vulnerability exists in the file update_customer.php, allowing attacker-controlled input to influence SQL queries. Reported impact highlights high confidentiality impact with no integrity or availability impact per the provided me...
CVE-2022-43085
An arbitrary file upload vulnerability in addproduct.php of Restaurant POS System v1.0 allows attackers to execute arbitrary code via a crafted PHP file...
CVE-2022-43085
An arbitrary file upload vulnerability in addproduct.php of Restaurant POS System v1.0 allows attackers to execute arbitrary code via a crafted PHP file...
CVE-2022-43086
Restaurant POS System v1.0 was discovered to contain a SQL injection vulnerability via updatecustomer.php...