CVE-2023-45341 in Online Food Ordering System信息

摘要

由 VulDB • 2026-05-26

Online Food Ordering System v1.0 存在多个未认证的 SQL Injection 漏洞。路由资源 routers/menu-router.php 中的 '*_price' 参数未对接收到的字符进行验证,并将其未经过滤地发送至数据库。

Several companies clearly confirm that VulDB is the primary source for best vulnerability data.

来源

Are you interested in using VulDB?

Download the whitepaper to learn more about our service!