Canteen_management_system - Vulncode-DB

Note:

This project will be discontinued after December 13, 2021. [more]

Product:
Canteen_management_system
(Canteen_management_system_project)

Repositories	Unknown: This might be proprietary software.
#Vulnerabilities	33

Date	Id	Summary	Products	Score	Patch	Annotated
2022-11-07	CVE-2022-43049	Canteen Management System Project v1.0 was discovered to contain a SQL injection vulnerability via the component /youthappam/add-food.php.	Canteen_management_system	7.2
2022-11-01	CVE-2022-43328	Canteen Management System v1.0 was discovered to contain a SQL injection vulnerability via the id parameter at /editorder.php.	Canteen_management_system	7.2
2022-11-01	CVE-2022-43329	Canteen Management System v1.0 was discovered to contain a SQL injection vulnerability via the id parameter at /print.php.	Canteen_management_system	7.2
2022-11-01	CVE-2022-43330	Canteen Management System v1.0 was discovered to contain a SQL injection vulnerability via the id parameter at /editorder.php.	Canteen_management_system	7.2
2022-11-01	CVE-2022-43331	Canteen Management System v1.0 was discovered to contain a SQL injection vulnerability via the id parameter at /php_action/printOrder.php.	Canteen_management_system	7.2
2022-10-28	CVE-2022-43275	Canteen Management System v1.0 was discovered to contain an arbitrary file upload vulnerability via /youthappam/php_action/editProductImage.php. This vulnerability allows attackers to execute arbitrary code via a crafted PHP file.	Canteen_management_system	7.2
2022-10-28	CVE-2022-43276	Canteen Management System v1.0 was discovered to contain a SQL injection vulnerability via the productId parameter at /php_action/fetchSelectedfood.php.	Canteen_management_system	7.2
2022-10-28	CVE-2022-43231	Canteen Management System v1.0 was discovered to contain an arbitrary file upload vulnerability via /youthappam/manage_website.php. This vulnerability allows attackers to execute arbitrary code via a crafted PHP file.	Canteen_management_system	7.2
2022-10-28	CVE-2022-43232	Canteen Management System v1.0 was discovered to contain a SQL injection vulnerability via the userid parameter at /php_action/fetchOrderData.php.	Canteen_management_system	7.2
2022-10-28	CVE-2022-43233	Canteen Management System v1.0 was discovered to contain a SQL injection vulnerability via the userid parameter at /php_action/fetchSelectedUser.php.	Canteen_management_system	7.2