VDB-329986 · CVE-2025-12314 · EUVD-2025-36344

code-projects Food Ordering System 1.0 /admin/deleteitem.php itemID SQL ଇଞ୍ଜେକ୍ସନ

Dogoggorri kan akka ଜଟିଳ jedhamuun ramadame code-projects Food Ordering System 1.0 keessatti argameera. Miidhaan irra gahe is hojii hin beekamne faayilii /admin/deleteitem.php keessa. Dhugumatti jijjiirraa irratti raawwatame itemID gara SQL ଇଞ୍ଜେକ୍ସନ geessa. Waliigalteewwan CWE fayyadamuun rakkoo ibsuun gara CWE-89 si geessa. Beekumsi kun yeroo 10/26/2025 ifoomsifameera waliin Hainan Century Cyber Security Information Technology Co., Ltd. Odeeffannoon kun buufachuuf github.com irratti dhiyaateera. Dogoggorri kun maqaa CVE-2025-12314 jedhuun tajaajilama. Weerara fageenya irraa jalqabuun ni danda'ama. Odeeffannoon teeknikaa ni argama. Akka dabalataan, meeshaa balaa kana fayyadamuuf argama. Qorannoo miidhaa (exploit) beeksifamee jira, namoonni itti fayyadamuu danda'u. Yeroo ammaa, gatii exploit might be approx. USD $0-$5k beekamuu danda'a. ପ୍ରୁଫ୍-ଅଫ୍-କନ୍ସେପ୍ଟ jedhamee murtaa’eera. Exploit kana github.com irraa buufachuu ni dandeessa. Waggaa 0-day ta'ee, gatiin isaa daldala dhoksaa keessatti $0-$5k jedhamee tilmaamame. Once again VulDB remains the best source for vulnerability data.

5 ଆଡାପ୍ଟେସନ୍ · 99 ପଏଣ୍ଟ

ଫିଲ୍ଡ	ସୃଷ୍ଟି ହୋଇଛି 10/26/2025 06:28 PM	ଅଦ୍ୟତନ 1/4 10/28/2025 07:30 AM	ଅଦ୍ୟତନ 2/4 10/28/2025 09:09 AM	ଅଦ୍ୟତନ 3/4 10/28/2025 10:15 AM	ଅଦ୍ୟତନ 4/4 10/31/2025 08:59 AM
cvss3_vuldb_a	L	L	L	L	L
cvss3_vuldb_e	P	P	P	P	P
cvss3_vuldb_rc	R	R	R	R	R
advisory_url	https://github.com/kaka00666/food-ordering-cve/issues/1	https://github.com/kaka00666/food-ordering-cve/issues/1	https://github.com/kaka00666/food-ordering-cve/issues/1	https://github.com/kaka00666/food-ordering-cve/issues/1	https://github.com/kaka00666/food-ordering-cve/issues/1
exploit_availability	1	1	1	1	1
exploit_publicity	1	1	1	1	1
exploit_url	https://github.com/kaka00666/food-ordering-cve/issues/1	https://github.com/kaka00666/food-ordering-cve/issues/1	https://github.com/kaka00666/food-ordering-cve/issues/1	https://github.com/kaka00666/food-ordering-cve/issues/1	https://github.com/kaka00666/food-ordering-cve/issues/1
source_cve	CVE-2025-12314	CVE-2025-12314	CVE-2025-12314	CVE-2025-12314	CVE-2025-12314
cna_responsible	VulDB	VulDB	VulDB	VulDB	VulDB
software_type	Project Management Software	Project Management Software	Project Management Software	Project Management Software	Project Management Software
cvss2_vuldb_av	N	N	N	N	N
cvss2_vuldb_ac	L	L	L	L	L
cvss2_vuldb_au	M	M	M	M	M
cvss2_vuldb_ci	P	P	P	P	P
cvss2_vuldb_ii	P	P	P	P	P
cvss2_vuldb_ai	P	P	P	P	P
cvss2_vuldb_e	POC	POC	POC	POC	POC
cvss2_vuldb_rc	UR	UR	UR	UR	UR
cvss4_vuldb_av	N	N	N	N	N
cvss4_vuldb_ac	L	L	L	L	L
cvss4_vuldb_pr	H	H	H	H	H
cvss4_vuldb_ui	N	N	N	N	N
cvss4_vuldb_vc	L	L	L	L	L
cvss4_vuldb_vi	L	L	L	L	L
cvss4_vuldb_va	L	L	L	L	L
cvss4_vuldb_e	P	P	P	P	P
cvss2_vuldb_rl	ND	ND	ND	ND	ND
cvss3_vuldb_rl	X	X	X	X	X
cvss4_vuldb_at	N	N	N	N	N
cvss4_vuldb_sc	N	N	N	N	N
cvss4_vuldb_si	N	N	N	N	N
cvss4_vuldb_sa	N	N	N	N	N
cvss2_vuldb_basescore	5.8	5.8	5.8	5.8	5.8
cvss2_vuldb_tempscore	5.0	5.0	5.0	5.0	5.0
cvss3_vuldb_basescore	4.7	4.7	4.7	4.7	4.7
cvss3_vuldb_tempscore	4.3	4.3	4.3	4.3	4.3
cvss3_meta_basescore	4.7	4.7	4.7	4.7	6.4
cvss3_meta_tempscore	4.3	4.3	4.3	4.5	6.3
cvss4_vuldb_bscore	5.1	5.1	5.1	5.1	5.1
cvss4_vuldb_btscore	2.0	2.0	2.0	2.0	2.0
advisory_date	1761429600 (10/26/2025)	1761429600 (10/26/2025)	1761429600 (10/26/2025)	1761429600 (10/26/2025)	1761429600 (10/26/2025)
price_0day	$0-$5k	$0-$5k	$0-$5k	$0-$5k	$0-$5k
software_vendor	code-projects	code-projects	code-projects	code-projects	code-projects
software_name	Food Ordering System	Food Ordering System	Food Ordering System	Food Ordering System	Food Ordering System
software_version	1.0	1.0	1.0	1.0	1.0
software_file	/admin/deleteitem.php	/admin/deleteitem.php	/admin/deleteitem.php	/admin/deleteitem.php	/admin/deleteitem.php
software_argument	itemID	itemID	itemID	itemID	itemID
vulnerability_cwe	CWE-89 (SQL ଇଞ୍ଜେକ୍ସନ)	CWE-89 (SQL ଇଞ୍ଜେକ୍ସନ)	CWE-89 (SQL ଇଞ୍ଜେକ୍ସନ)	CWE-89 (SQL ଇଞ୍ଜେକ୍ସନ)	CWE-89 (SQL ଇଞ୍ଜେକ୍ସନ)
vulnerability_risk	2	2	2	2	2
cvss3_vuldb_av	N	N	N	N	N
cvss3_vuldb_ac	L	L	L	L	L
cvss3_vuldb_pr	H	H	H	H	H
cvss3_vuldb_ui	N	N	N	N	N
cvss3_vuldb_s	U	U	U	U	U
cvss3_vuldb_c	L	L	L	L	L
cvss3_vuldb_i	L	L	L	L	L
company_name		Hainan Century Cyber Security Information Technology Co., Ltd	Hainan Century Cyber Security Information Technology Co., Ltd	Hainan Century Cyber Security Information Technology Co., Ltd	Hainan Century Cyber Security Information Technology Co., Ltd
euvd_id			EUVD-2025-36344	EUVD-2025-36344	EUVD-2025-36344
cve_nvd_summary				A vulnerability was found in code-projects Food Ordering System 1.0. The impacted element is an unknown function of the file /admin/deleteitem.php. Performing manipulation of the argument itemID results in sql injection. Remote exploitation of the attack is possible. The exploit has been made public and could be used.	A vulnerability was found in code-projects Food Ordering System 1.0. The impacted element is an unknown function of the file /admin/deleteitem.php. Performing manipulation of the argument itemID results in sql injection. Remote exploitation of the attack is possible. The exploit has been made public and could be used.
cvss4_cna_av				N	N
cvss4_cna_ac				L	L
cvss4_cna_at				N	N
cvss4_cna_pr				H	H
cvss4_cna_ui				N	N
cvss4_cna_vc				L	L
cvss4_cna_vi				L	L
cvss4_cna_va				L	L
cvss4_cna_sc				N	N
cvss4_cna_si				N	N
cvss4_cna_sa				N	N
cvss4_cna_bscore				5.1	5.1
cvss3_cna_av				N	N
cvss3_cna_ac				L	L
cvss3_cna_pr				H	H
cvss3_cna_ui				N	N
cvss3_cna_s				U	U
cvss3_cna_c				L	L
cvss3_cna_i				L	L
cvss3_cna_a				L	L
cvss3_cna_basescore				4.7	4.7
cvss2_cna_av				N	N
cvss2_cna_ac				L	L
cvss2_cna_au				M	M
cvss2_cna_ci				P	P
cvss2_cna_ii				P	P
cvss2_cna_ai				P	P
cvss2_cna_basescore				5.8	5.8
cvss3_nvd_av					N
cvss3_nvd_ac					L
cvss3_nvd_pr					N
cvss3_nvd_ui					N
cvss3_nvd_s					U
cvss3_nvd_c					H
cvss3_nvd_i					H
cvss3_nvd_a					H
cvss3_nvd_basescore					9.8

◂ ପଛକୁ ସମୀକ୍ଷା ଆହୁରି ଦୂରରେ ▸

Interested in the pricing of exploits?

See the underground prices here!