Phpjabbers Food Delivery Script vulnerabilities
3 known vulnerabilities affecting phpjabbers/food_delivery_script.
Total CVEs
3
CISA KEV
0
Public exploits
2
Exploited in wild
1
Severity breakdown
CRITICAL3
Vulnerabilities
Page 1 of 1
CVE-2023-40748P2CRITICALCVSS 9.8ExploitedPoCv3.02023-08-28
CVE-2023-40748 [CRITICAL] CWE-89 CVE-2023-40748: PHPJabbers Food Delivery Script 3.0 has a SQL injection (SQLi) vulnerability in the "q" parameter of
PHPJabbers Food Delivery Script 3.0 has a SQL injection (SQLi) vulnerability in the "q" parameter of index.php.
nvd
CVE-2023-40749P2CRITICALCVSS 9.8PoCv3.02023-08-28
CVE-2023-40749 [CRITICAL] CWE-89 CVE-2023-40749: PHPJabbers Food Delivery Script v3.0 is vulnerable to SQL Injection in the "column" parameter of ind
PHPJabbers Food Delivery Script v3.0 is vulnerable to SQL Injection in the "column" parameter of index.php.
nvd
CVE-2023-40757P3CRITICALCVSS 9.8v3.12023-08-28
CVE-2023-40757 [CRITICAL] CWE-209 CVE-2023-40757: User enumeration is found in PHPJabbers Food Delivery Script v3.1. This issue occurs during password
User enumeration is found in PHPJabbers Food Delivery Script v3.1. This issue occurs during password recovery, where a difference in messages could allow an attacker to determine if the user is valid or not, enabling a brute force attack with valid users.
nvd