Sourcecodester Simple Food Ordering System vulnerabilities

3 known vulnerabilities affecting sourcecodester/simple_food_ordering_system.

Total CVEs

3

CISA KEV

0

Public exploits

1

Exploited in wild

0

Severity breakdown

MEDIUM3

Vulnerabilities

Page 1 of 1

CVE-2025-6161MEDIUMCVSS 6.9v1.02025-06-17

CVE-2025-6161 [MEDIUM] CWE-284 CVE-2025-6161: A vulnerability, which was classified as critical, was found in SourceCodester Simple Food Ordering A vulnerability, which was classified as critical, was found in SourceCodester Simple Food Ordering System 1.0. Affected is an unknown function of the file /editproduct.php. The manipulation of the argument photo leads to unrestricted upload. It is possible to launch the attack remotely. The exploit has been disclosed to the public and may be used.

CVE-2023-0902MEDIUMCVSS 5.4PoCv1.02023-02-18

CVE-2023-0902 [LOW] CWE-79 CVE-2023-0902: A vulnerability was found in SourceCodester Simple Food Ordering System 1.0. It has been classified A vulnerability was found in SourceCodester Simple Food Ordering System 1.0. It has been classified as problematic. This affects an unknown part of the file process_order.php. The manipulation of the argument order leads to cross site scripting. It is possible to initiate the attack remotely. The exploit has been disclosed to the public and may be used. Th

CVE-2022-2683MEDIUMCVSS 5.4v1.02022-08-05

CVE-2022-2683 [LOW] CWE-79 CVE-2022-2683: A vulnerability, which was classified as problematic, was found in SourceCodester Simple Food Orderi A vulnerability, which was classified as problematic, was found in SourceCodester Simple Food Ordering System 1.0. This affects an unknown part of the file /login.php. The manipulation of the argument email/password with the input ">alert(1) leads to cross site scripting. It is possible to initiate the attack remotely. The exploit has been disclosed to th