CVE-2022-2683

CVE-2022-2683 pertains to SourceCodester Simple Food Ordering System 1.0, with a cross-site scripting vulnerability in the login.php file. The issue is triggered by manipulating the email/password parameters using a payload such as >, allowing remote initiation and an exploit disclosed publicl...

CVE-2023-0902

CVE-2023-0902 affects SourceCodester Simple Food Ordering System 1.0. The vulnerability is an input handling flaw in process_order.php that allows cross-site scripting (XSS) via manipulation of an argument, enabling injection of script code in the server response. Multiple sources (NVD and securi...