exploitDog

CVE-2023-37627

Опубликовано: 12 июл. 2023

Источник: nvd

CVSS3: 9.8

EPSS Низкий

Описание

Code-projects Online Restaurant Management System 1.0 is vulnerable to SQL Injection. Through SQL injection, an attacker can bypass the admin panel and view order records, add items, delete items etc.

Ссылки

https://code-projects.org/online-restaurant-management-system-in-php-with-source-code/
Product
https://gist.github.com/1337kid/d3e7702bd19cc9355a6b3f153eb2fe8e
Exploit
Third Party Advisory
https://code-projects.org/online-restaurant-management-system-in-php-with-source-code/
Product
https://gist.github.com/1337kid/d3e7702bd19cc9355a6b3f153eb2fe8e
Exploit
Third Party Advisory

Уязвимые конфигурации

Конфигурация 1

cpe:2.3:a:code-projects:online_restaurant_management_system:1.0:*:*:*:*:wordpress:*:*

EPSS

Процентиль: 5%

0.00021

Низкий

9.8 Critical

CVSS3

Дефекты

CWE-89

Связанные уязвимости

GHSA-cccw-mq2x-rw73

CVSS3: 9.8

github

больше 2 лет назад

Code-projects Online Restaurant Management System 1.0 is vulnerable to SQL Injection. Through SQL injection, an attacker can bypass the admin panel and view order records, add items, delete items etc.

EPSS

Процентиль: 5%

0.00021

Низкий

9.8 Critical

CVSS3

Дефекты

CWE-89