Canteen Management System Project Canteen Management System vulnerabilities
28 known vulnerabilities affecting canteen_management_system_project/canteen_management_system.
Total CVEs
28
CISA KEV
0
Public exploits
0
Exploited in wild
0
Severity breakdown
CRITICAL8HIGH18MEDIUM2
Vulnerabilities
Page 2 of 2
CVE-2022-43330HIGHCVSS 7.2v1.02022-11-01
CVE-2022-43330 [HIGH] CWE-89 CVE-2022-43330: Canteen Management System v1.0 was discovered to contain a SQL injection vulnerability via the id pa
Canteen Management System v1.0 was discovered to contain a SQL injection vulnerability via the id parameter at /editorder.php.
nvd
CVE-2022-43232HIGHCVSS 7.2v1.02022-10-28
CVE-2022-43232 [HIGH] CWE-89 CVE-2022-43232: Canteen Management System v1.0 was discovered to contain a SQL injection vulnerability via the useri
Canteen Management System v1.0 was discovered to contain a SQL injection vulnerability via the userid parameter at /php_action/fetchOrderData.php.
nvd
CVE-2022-43276HIGHCVSS 7.2v1.02022-10-28
CVE-2022-43276 [HIGH] CWE-89 CVE-2022-43276: Canteen Management System v1.0 was discovered to contain a SQL injection vulnerability via the produ
Canteen Management System v1.0 was discovered to contain a SQL injection vulnerability via the productId parameter at /php_action/fetchSelectedfood.php.
nvd
CVE-2022-43275HIGHCVSS 7.2v1.02022-10-28
CVE-2022-43275 [HIGH] CWE-434 CVE-2022-43275: Canteen Management System v1.0 was discovered to contain an arbitrary file upload vulnerability via
Canteen Management System v1.0 was discovered to contain an arbitrary file upload vulnerability via /youthappam/php_action/editProductImage.php. This vulnerability allows attackers to execute arbitrary code via a crafted PHP file.
nvd
CVE-2022-43233HIGHCVSS 7.2v1.02022-10-28
CVE-2022-43233 [HIGH] CWE-89 CVE-2022-43233: Canteen Management System v1.0 was discovered to contain a SQL injection vulnerability via the useri
Canteen Management System v1.0 was discovered to contain a SQL injection vulnerability via the userid parameter at /php_action/fetchSelectedUser.php.
nvd
CVE-2022-43231HIGHCVSS 7.2v1.02022-10-28
CVE-2022-43231 [HIGH] CWE-434 CVE-2022-43231: Canteen Management System v1.0 was discovered to contain an arbitrary file upload vulnerability via
Canteen Management System v1.0 was discovered to contain an arbitrary file upload vulnerability via /youthappam/manage_website.php. This vulnerability allows attackers to execute arbitrary code via a crafted PHP file.
nvd
CVE-2022-3583CRITICALCVSS 9.8v1.02022-10-18
CVE-2022-3583 [CRITICAL] CWE-707 CVE-2022-3583: A vulnerability was found in SourceCodester Canteen Management System 1.0. It has been declared as c
A vulnerability was found in SourceCodester Canteen Management System 1.0. It has been declared as critical. This vulnerability affects unknown code of the file login.php. The manipulation of the argument business leads to sql injection. The attack can be initiated remotely. The exploit has been disclosed to the public and may be used. The identifie
nvd
CVE-2022-3584HIGHCVSS 8.8v1.02022-10-18
CVE-2022-3584 [HIGH] CWE-707 CVE-2022-3584: A vulnerability was found in SourceCodester Canteen Management System 1.0. It has been rated as crit
A vulnerability was found in SourceCodester Canteen Management System 1.0. It has been rated as critical. This issue affects some unknown processing of the file edituser.php. The manipulation of the argument id leads to sql injection. The attack may be initiated remotely. The exploit has been disclosed to the public and may be used. The identifier VDB-2
nvd
← Previous2 / 2