CVE-2024-6253 | itsourcecode Online Food Ordering System 1.0 /purchase.php customer sql injection

Posted by Angelo Barbosa | Jun 21, 2024 | CVE

A vulnerability was found in itsourcecode Online Food Ordering System 1.0 and classified as critical. Affected by this issue is some unknown functionality of the file /purchase.php. The manipulation of the argument customer leads to sql injection.

This vulnerability is handled as CVE-2024-6253. The attack may be launched remotely. Furthermore, there is an exploit available.

CVE-2024-6253 | itsourcecode Online Food Ordering System 1.0 /purchase.php customer sql injection

Related Posts

CVE-2024-4198 | Mattermost up to 8.1.11/9.5.2/9.6.0/9.7.0 HTTP Request access control

CVE-2024-7064 | ElementsKit Pro Plugin up to 3.6.5 on WordPress cross site scripting

CVE-2024-45418 | Zoom Workplace App/Meeting SDK/Video SDK/Rooms App up to 6.1.4 on macOS symlink

CVE-2024-6627 | Happy Addons for Elementor Plugin up to 3.11.2 on WordPress PDF View Widget cross site scripting