Fast Food Ordering System v1.0 is vulnerable to Delete any file. via /ffos/classes/Master.php?f=delete_img.
References
| Link | Resource |
|---|---|
| https://github.com/k0xx11/bug_report/blob/main/vendors/oretnom23/fast-food-ordering-system/delet-file-1.md | Exploit Third Party Advisory |
Configurations
Configuration 1 (hide)
|
History
08 Aug 2023, 14:21
| Type | Values Removed | Values Added |
|---|---|---|
| CWE | CWE-22 |
22 Jun 2022, 19:50
| Type | Values Removed | Values Added |
|---|---|---|
| First Time |
Fast Food Ordering System Project
Fast Food Ordering System Project fast Food Ordering System |
|
| CPE | cpe:2.3:a:fast_food_ordering_system_project:fast_food_ordering_system:1.0:*:*:*:*:*:*:* | |
| CWE | CWE-668 | |
| CVSS |
v2 : v3 : |
v2 : 6.4
v3 : 9.1 |
| References | (MISC) https://github.com/k0xx11/bug_report/blob/main/vendors/oretnom23/fast-food-ordering-system/delet-file-1.md - Exploit, Third Party Advisory |
14 Jun 2022, 16:15
| Type | Values Removed | Values Added |
|---|---|---|
| New CVE |
Information
Published : 2022-06-14 16:15
Updated : 2023-12-10 14:22
NVD link : CVE-2022-32328
Mitre link : CVE-2022-32328
CVE.ORG link : CVE-2022-32328
JSON object : View
Products Affected
fast_food_ordering_system_project
- fast_food_ordering_system
CWE
CWE-22
Improper Limitation of a Pathname to a Restricted Directory ('Path Traversal')