CVE-2025-11604 | projectworlds Online Ordering Food System 1.0 /all-orders.php Status sql injection

Inserito da Angelo Barbosa | Ott 10, 2025 | CVE

A vulnerability has been found in projectworlds Online Ordering Food System 1.0 and classified as critical. This issue affects some unknown processing of the file /all-orders.php. This manipulation of the argument Status causes sql injection.

This vulnerability is registered as CVE-2025-11604. Remote exploitation of the attack is possible. Furthermore, an exploit is available.

CVE-2025-11604 | projectworlds Online Ordering Food System 1.0 /all-orders.php Status sql injection

Post correlati

CVE-2024-36622 | RaspAP raspap-webgui up to 3.0.9 clearlog.php logfile command injection

CVE-2025-7164 | PHPGurukul/Campcodes Cyber Cafe Management System 1.0 /index.php Username sql injection

CVE-2024-43663 | Iocharger prior 24120701 stack-based overflow (DIVD-2024-00035)

CVE-2024-27923 | grav Phar File unrestricted upload