CVE-2023-45327

Name of the Vulnerable Software and Affected Versions Online Food Ordering System version 1.0

Description The issue concerns multiple Unauthenticated SQL Injection vulnerabilities. The name parameter of the "routers/add-users.php" resource does not validate the input, making it vulnerable to SQL injection attacks.

Recommendations For Online Food Ordering System version 1.0, consider validating and sanitizing the name parameter in the "routers/add-users.php" resource to prevent SQL injection attacks. As a temporary workaround, restrict access to the "routers/add-users.php" resource until a proper fix is implemented.