17 matches found
EUVD-2026-26266
A vulnerability was determined in SourceCodester Pizzafy Ecommerce System 1.0. Affected by this vulnerability is an unknown functionality of the file /admin/vieworder.php of the component GET Parameter Handler. Executing a manipulation of the argument ID can lead to sql injection. The attack may ...
EUVD-2023-30990
Malicious code in bioql PyPI...
EUVD-2023-28256
Malicious code in bioql PyPI...
CVE-2023-24197
Online Food Ordering System v2 was discovered to contain a SQL injection vulnerability via the id parameter at vieworder.php...
CVE-2024-2418 SourceCodester Best POS Management System view_order.php sql injection
A vulnerability was found in SourceCodester Best POS Management System 1.0. It has been declared as critical. Affected by this vulnerability is an unknown functionality of the file /vieworder.php. The manipulation of the argument id leads to sql injection. The attack can be launched remotely. The...
CVE-2024-2153 SourceCodester Online Mobile Management Store view_order.php sql injection
A vulnerability, which was classified as critical, was found in SourceCodester Online Mobile Management Store 1.0. This affects an unknown part of the file /admin/orders/vieworder.php. The manipulation of the argument id leads to sql injection. It is possible to initiate the attack remotely. The...
Sql injection
Online Pizza Ordering System 1.0 was discovered to contain a SQL injection vulnerability via the id parameter at /admin/vieworder.php...
CVE-2023-27210
Online Pizza Ordering System 1.0 was discovered to contain a SQL injection vulnerability via the id parameter at /admin/vieworder.php...
CVE-2023-27210
CVE-2023-27210 concerns Online Pizza Ordering System 1.0, where a SQL injection is reported via the id parameter in /admin/view_order.php. Multiple sources (NVD, Red Hat, CNNVD, CVE listing) consistently describe a SQLi issue in the admin view_order endpoint. The NVD entry assigns a severe CVSS v...
Online Pizza Ordering System SQL注入漏洞
Online Pizza Ordering System is an online pizza ordering system by Carlo Montero, an individual developer. A security vulnerability exists in Online Pizza Ordering System version 1.0, which is caused by a SQL injection vulnerability via the id parameter in /admin/vieworder.php...
Online Food Ordering System SQL Injection Vulnerability (CNVD-2023-07974)
Online Food Ordering System is an online food ordering system. An SQL injection vulnerability exists in Online Food Ordering System, which stems from a lack of validation of externally entered SQL statements in the id parameter of the vieworder.php page. An attacker could use this vulnerability t...
Sql injection
Online Food Ordering System v2 was discovered to contain a SQL injection vulnerability via the id parameter at vieworder.php...
CVE-2023-24197
CVE-2023-24197 concerns Online Food Ordering System v2, where a SQL injection exists in the view_order.php endpoint via the id parameter. The root cause is insufficient validation of externally supplied SQL statements, allowing potentially unauthorized database access and data exposure as indicat...
Merchandise Online Store SQL注入漏洞(CNVD-2022-40269)
Merchandise Online Store is a merchandise online store system. merchandise Online Store has a security vulnerability that can be exploited by attackers via /vloggersmerch/admin/orders/vieworder.php?view=user&id = SQL injection attack...
CVE-2022-30400
Merchandise Online Store v1.0 is vulnerable to SQL Injection via /vloggersmerch/admin/orders/vieworder.php?view=user&id=...
CVE-2006-5107
Multiple SQL injection vulnerabilities in Devellion CubeCart 2.0.x allow remote attackers to execute arbitrary SQL commands via 1 the username parameter in admin/forgotpass.php, 2 the orderid parameter in vieworder.php, 3 the viewdoc parameter in viewdoc.php, and 4 the orderid parameter in...
CVE-2006-5107
Multiple SQL injection vulnerabilities in Devellion CubeCart 2.0.x allow remote attackers to execute arbitrary SQL commands via 1 the username parameter in admin/forgotpass.php, 2 the orderid parameter in vieworder.php, 3 the viewdoc parameter in viewdoc.php, and 4 the orderid parameter in...