CVE-2025-12302 | code-projects Simple Food Ordering System 1.0 /editproduct.php pname/category/price cross site scripting

Inserito da Angelo Barbosa | Ott 26, 2025 | CVE

A vulnerability was found in code-projects Simple Food Ordering System 1.0. It has been rated as problematic. The affected element is an unknown function of the file /editproduct.php. Performing manipulation of the argument pname/category/price results in cross site scripting.

This vulnerability was named CVE-2025-12302. The attack may be initiated remotely. In addition, an exploit is available.

CVE-2025-12302 | code-projects Simple Food Ordering System 1.0 /editproduct.php pname/category/price cross site scripting

Post correlati

CVE-2024-11767 | NewsmanApp Plugin up to 2.7.6 on WordPress cross site scripting

CVE-2024-47008 | Ivanti Avalanche up to 6.4.4 server-side request forgery

CVE-2021-38121 | OpenText NetIQ Advance Authentication up to 6.3.5.0 TLS Protocol inadequate encryption

CVE-2025-5742 | Schneider Electric EVLink WallBox configuration cross site scripting (SEVD-2025-161-03)