CVE-2025-12315 | code-projects Food Ordering System 1.0 /admin/menu.php itemPrice sql injection

Inserito da Angelo Barbosa | Ott 26, 2025 | CVE

A vulnerability was found in code-projects Food Ordering System 1.0. It has been declared as critical. This affects an unknown function of the file /admin/menu.php. Executing manipulation of the argument itemPrice can lead to sql injection.

This vulnerability is handled as CVE-2025-12315. The attack can be executed remotely. Additionally, an exploit exists.

CVE-2025-12315 | code-projects Food Ordering System 1.0 /admin/menu.php itemPrice sql injection

Post correlati

CVE-2025-9499 | Ocean Extra Plugin up to 2.4.9 on WordPress Shortcode oceanwp_library cross site scripting

CVE-2024-48021 | Scott Paterson Contact Form 7 Plugin up to 2.3 on WordPress cross site scripting

CVE-2023-52379 | Huawei HarmonyOS/EMUI calendarProvider module access control

CVE-2025-9137 | Scada-LTS 2.7.8.1 scheduled_events.shtm alias cross site scripting