CVSS: 7.5EPSS: 0%CPEs: 1EXPL: 1CVE-2023-0305 – SourceCodester Online Food Ordering System Login Module admin_class.php sql injection
https://notcve.org/view.php?id=CVE-2023-0305
15 Jan 2023 — A vulnerability classified as critical was found in SourceCodester Online Food Ordering System. This vulnerability affects unknown code of the file admin_class.php of the component Login Module. The manipulation of the argument username leads to sql injection. The attack can be initiated remotely. The exploit has been disclosed to the public and may be used. • https://github.com/Hanfu-l/cvetest/blob/main/3.pdf • CWE-89: Improper Neutralization of Special Elements used in an SQL Command ('SQL Injection') •
CVSS: 7.5EPSS: 0%CPEs: 1EXPL: 1CVE-2023-0304 – SourceCodester Online Food Ordering System Signup Module admin_class.php sql injection
https://notcve.org/view.php?id=CVE-2023-0304
15 Jan 2023 — A vulnerability classified as critical has been found in SourceCodester Online Food Ordering System. This affects an unknown part of the file admin_class.php of the component Signup Module. The manipulation of the argument email leads to sql injection. It is possible to initiate the attack remotely. The exploit has been disclosed to the public and may be used. • https://github.com/Hanfu-l/cvetest/blob/main/2.pdf • CWE-89: Improper Neutralization of Special Elements used in an SQL Command ('SQL Injection') •
CVSS: 7.5EPSS: 0%CPEs: 1EXPL: 1CVE-2023-0303 – SourceCodester Online Food Ordering System view_prod.php sql injection
https://notcve.org/view.php?id=CVE-2023-0303
15 Jan 2023 — A vulnerability was found in SourceCodester Online Food Ordering System. It has been rated as critical. Affected by this issue is some unknown functionality of the file view_prod.php. The manipulation of the argument id leads to sql injection. The attack may be launched remotely. • https://github.com/Hanfu-l/cvetest/blob/main/1.pdf • CWE-89: Improper Neutralization of Special Elements used in an SQL Command ('SQL Injection') •