Note:
This project will be discontinued after December 13, 2021. [more]
Product:
Canteen_management_system
(Canteen_management_system_project)| Repositories |
Unknown: This might be proprietary software. |
| #Vulnerabilities | 33 |
| Date | Id | Summary | Products | Score | Patch | Annotated |
|---|---|---|---|---|---|---|
| 2022-11-08 | CVE-2022-43144 | A cross-site scripting (XSS) vulnerability in Canteen Management System v1.0 allows attackers to execute arbitrary web scripts or HTML via a crafted payload. | Canteen_management_system | 5.4 | ||
| 2022-11-09 | CVE-2022-43277 | Canteen Management System v1.0 was discovered to contain an arbitrary file upload vulnerability via ip/youthappam/php_action/editFile.php. This vulnerability allows attackers to execute arbitrary code via a crafted PHP file. | Canteen_management_system | 7.2 | ||
| 2022-11-09 | CVE-2022-43278 | Canteen Management System v1.0 was discovered to contain a SQL injection vulnerability via the categoriesId parameter at /php_action/fetchSelectedCategories.php. | Canteen_management_system | 7.2 | ||
| 2022-11-07 | CVE-2022-43049 | Canteen Management System Project v1.0 was discovered to contain a SQL injection vulnerability via the component /youthappam/add-food.php. | Canteen_management_system | 7.2 | ||
| 2022-11-01 | CVE-2022-43328 | Canteen Management System v1.0 was discovered to contain a SQL injection vulnerability via the id parameter at /editorder.php. | Canteen_management_system | 7.2 | ||
| 2022-11-01 | CVE-2022-43329 | Canteen Management System v1.0 was discovered to contain a SQL injection vulnerability via the id parameter at /print.php. | Canteen_management_system | 7.2 | ||
| 2022-11-01 | CVE-2022-43330 | Canteen Management System v1.0 was discovered to contain a SQL injection vulnerability via the id parameter at /editorder.php. | Canteen_management_system | 7.2 | ||
| 2022-11-01 | CVE-2022-43331 | Canteen Management System v1.0 was discovered to contain a SQL injection vulnerability via the id parameter at /php_action/printOrder.php. | Canteen_management_system | 7.2 | ||
| 2022-10-28 | CVE-2022-43275 | Canteen Management System v1.0 was discovered to contain an arbitrary file upload vulnerability via /youthappam/php_action/editProductImage.php. This vulnerability allows attackers to execute arbitrary code via a crafted PHP file. | Canteen_management_system | 7.2 | ||
| 2022-10-28 | CVE-2022-43276 | Canteen Management System v1.0 was discovered to contain a SQL injection vulnerability via the productId parameter at /php_action/fetchSelectedfood.php. | Canteen_management_system | 7.2 |