Vulnerabilities (CVE)

Filtered by vendor Remyandrade Subscribe
Filtered by product Online Food Menu
Total 2 CVE
CVE Vendors Products Updated CVSS v2 CVSS v3
CVE-2024-24134 1 Remyandrade 1 Online Food Menu 2024-11-21 N/A 4.8 MEDIUM
Sourcecodester Online Food Menu 1.0 is vulnerable to Cross Site Scripting (XSS) via the 'Menu Name' and 'Description' fields in the Update Menu section.
CVE-2024-8559 1 Remyandrade 1 Online Food Menu 2024-09-10 5.8 MEDIUM 7.2 HIGH
A vulnerability, which was classified as critical, has been found in SourceCodester Online Food Menu 1.0. This issue affects some unknown processing of the file /endpoint/delete-menu.php. The manipulation of the argument menu leads to sql injection. The attack may be initiated remotely. The exploit has been disclosed to the public and may be used.