{"id":9069,"date":"2025-07-27T11:51:08","date_gmt":"2025-07-27T11:51:08","guid":{"rendered":"http:\/\/localhost\/?p=9069"},"modified":"2025-07-27T11:51:08","modified_gmt":"2025-07-27T11:51:08","slug":"code-projects-online-ordering-system-productphp-sql-injection","status":"publish","type":"post","link":"https:\/\/zero.redgem.net\/?p=9069","title":{"rendered":"code-projects Online Ordering System product.php sql injection"},"content":{"rendered":"
\n

CVE Details<\/h2>\n
\n
\n

Basic Information<\/h3>\n\n\n\n\n\n
Title<\/th>\ncode-projects Online Ordering System product.php sql injection<\/td>\n<\/tr>\n
Type<\/th>\ncve<\/td>\n<\/tr>\n
Published<\/th>\n2025-07-27T16:02:06.108Z<\/td>\n<\/tr>\n
Modified<\/th>\n2025-07-27T16:02:06.108Z<\/td>\n<\/tr>\n<\/table>\n<\/div>\n
\n

Product Information<\/h3>\n\n\n\n\n
Vendor<\/th>\ncode-projects<\/td>\n<\/tr>\n
Product<\/th>\nOnline Ordering System<\/td>\n<\/tr>\n
Version<\/th>\n1.0<\/td>\n<\/tr>\n<\/table>\n<\/div>\n<\/div>\n
\n

CVSS Information<\/h3>\n\n\n\n
Base Score<\/th>\n6.9 (MEDIUM)<\/td>\n<\/tr>\n
Attack Vector<\/th>\nCVSS:4.0\/AV:N\/AC:L\/AT:N\/PR:N\/UI:N\/VC:L\/VI:L\/VA:L\/SC:N\/SI:N\/SA:N\/E:P<\/td>\n<\/tr>\n<\/table>\n<\/div>\n
\n

AI Analysis<\/h3>\n\n\n\n\n\n\n
AI Description<\/th>\nA SQL injection vulnerability in code-projects Online Ordering System version 1.0 allows remote attackers to inject malicious SQL code via the Name argument in product.php. This could lead to unauthorized data access or modification. The CVSS score of 6.9 indicates a medium severity level.<\/td>\n<\/tr>\n
AI Severity<\/th>\nMedium<\/td>\n<\/tr>\n
AI Vendor<\/th>\ncode-projects<\/td>\n<\/tr>\n
AI Product<\/th>\nOnline Ordering System<\/td>\n<\/tr>\n
AI Version<\/th>\n1.0<\/td>\n<\/tr>\n<\/table>\n<\/div>\n
\n

Affected Products<\/h4>\n