Lucene search
+L
FabianSimple Cafe Ordering System

5 matches found

CVE
CVE
added 2025/08/15 9:2 a.m.27 views

CVE-2025-9025

The CVE concerns code-projects Simple Cafe Ordering System 1.0. The vulnerability exists in portal.php where the ID parameter is used unsafely, allowing SQL injection. The attack can be launched remotely and the exploit has been publicly disclosed. Connected sources corroborate the same flaw acro...

8.8CVSS7.5AI score0.00335EPSS
CVE
CVE
added 2025/11/15 4:2 p.m.21 views

CVE-2025-13201

The CVE-2025-13201 entry concerns Code-projects’ Simple Cafe Ordering System 1.0. A SQL injection vulnerability exists in the login.php file, arising from improper handling of the Username parameter. The issue can be exploited remotely, and an exploit is publicly available. Affected component: lo...

9.8CVSS7.2AI score0.0045EPSS
CVE
CVE
added 2025/11/15 5:32 p.m.20 views

CVE-2025-13203

Concrete details found: Simple Cafe Ordering System 1.0 has a vulnerability in /addmem.php where manipulating the studentnum parameter enables SQL injection. Remote exploitability is indicated, and multiple sources (NVD, Red Hat, CNVD, CNNVD, CVE lists, and Vuln enrichment) confirm the issue and ...

9.8CVSS7.3AI score0.00379EPSS
CVE
CVE
added 2025/11/15 5:2 p.m.16 views

CVE-2025-13202

The CVE-2025-13202 entry concerns code-projects Simple Cafe Ordering System 1.0. A cross-site scripting vulnerability exists in the /add_to_cart mechanism, triggered by manipulating the product_name parameter in that file. The vulnerability is described as exploitable remotely, and public exploit...

5.4CVSS3.9AI score0.0025EPSS
CVE
CVE
added 2025/11/23 10:2 p.m.13 views

CVE-2025-13571

CVE-2025-13571 affects Code-Projects Simple Food Ordering System 1.0, with a SQL injection vulnerability in /listorder.php triggered by manipulating the ID parameter. The issue is remotely exploitable, and public exploit information is cited in the initial data. Connected sources corroborate the ...

8.8CVSS6.5AI score0.00276EPSS