CNNVD-202510-1518 Information
Oct 11, 2025
cve
CNNVD ID
CNNVD-202510-1518
Related CVE
- CNNVD Published: 2025-10-11
Description (Chinese)
Projectworlds Online Ordering Food System是Projectworlds的一个网上订餐系统。 Projectworlds Online Ordering Food System 1.0版本存在SQL注入漏洞,该漏洞源于对文件/all-orders.php中参数Status的错误操作,可能导致SQL注入攻击。
Description (English)
Projectworlds Online Ordering Food System is a web-based subscription system for Projectworlds. Projectworlds Online Ordering Food System Version 1.0 contains an injection loophole in SQL, which is the result of a mishandling of the parameter Status in the file/all-orders.php, which could lead to an attack on SQL injection.
Hazard Level
Medium
Vulnerability Type
SQL注入
Affected Vendor
Projectworlds
Published
2025-10-11
Last Modified
2026-02-24
References
https://github.com/Duo-zhen/CVE/issues/4 https://vuldb.com/?ctiid.327926 https://vuldb.com/?id.327926 https://vuldb.com/?submit.671979
Share on: