ГлавнаяУязвимости → CVE-2025-11604
7.3высокая

CVE-2025-11604

Описание

A vulnerability was determined in projectworlds Online Ordering Food System 1.0. This issue affects some unknown processing of the file /all-orders.php. This manipulation of the argument Status causes sql injection. Remote exploitation of the attack is possible. The exploit has been publicly disclosed and may be utilized.

Затрагиваемое ПО
Projectworlds Online food ordering system
CVSS
Балл7.3 — высокая
ВекторCVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:L/I:L/A:L
Источники
https://github.com/Duo-zhen/CVE/issues/4https://vuldb.com/?ctiid.327926https://vuldb.com/?id.327926https://vuldb.com/?submit.671979https://github.com/Duo-zhen/CVE/issues/4