A vulnerability was found in CodeAstro Online Food...
Moderate severity
Unreviewed
Published
Dec 31, 2024
to the GitHub Advisory Database
•
Updated Dec 31, 2024
Description
Published by the National Vulnerability Database
Dec 31, 2024
Published to the GitHub Advisory Database
Dec 31, 2024
Last updated
Dec 31, 2024
A vulnerability was found in CodeAstro Online Food Ordering System 1.0. It has been declared as critical. Affected by this vulnerability is an unknown functionality of the file /admin/update_users.php of the component Update User Page. The manipulation of the argument user_upd leads to sql injection. The attack can be launched remotely. The exploit has been disclosed to the public and may be used.
References