RSS   Podatności dla 'Canteen management system'   RSS

2022-10-28
 
CVE-2022-43231

CWE-434
 

 
Canteen Management System v1.0 was discovered to contain an arbitrary file upload vulnerability via /youthappam/manage_website.php. This vulnerability allows attackers to execute arbitrary code via a crafted PHP file.

 
 
CVE-2022-43232

CWE-89
 

 
Canteen Management System v1.0 was discovered to contain a SQL injection vulnerability via the userid parameter at /php_action/fetchOrderData.php.

 
 
CVE-2022-43233

CWE-89
 

 
Canteen Management System v1.0 was discovered to contain a SQL injection vulnerability via the userid parameter at /php_action/fetchSelectedUser.php.

 


Copyright 2024, cxsecurity.com

 

Back to Top