CVE-2025-4936 – “Projectworlds Online Food Ordering System SQL Injection Vulnerability”

May 19, 2025

CVE ID : CVE-2025-4936

Published : May 19, 2025, 3:15 p.m. | 1 hour, 13 minutes ago

Description : A vulnerability was found in projectworlds Online Food Ordering System 1.0. It has been classified as critical. Affected is an unknown function of the file /admin-page.php. The manipulation of the argument 1_price leads to sql injection. It is possible to launch the attack remotely. The exploit has been disclosed to the public and may be used.

Severity: 7.3 | HIGH

Visit the link for more details, such as CVSS details, affected products, timeline, and more…

Source: Read More

Previous ArticleCVE-2025-4937 – SourceCodester Apartment Visitor Management System SQL Injection Vulnerability

Next Article CVE-2025-48346 – Etsy360 Embed and Integrate Etsy Shop Missing Authorization Vulnerability

Mirantis reveals Lens Prism, an AI copilot for operating Kubernetes clusters

Avoid these common platform engineering mistakes

Full-Stack Techies vs Toptal: Which Is Better for React.js Outsourcing?

The AI productivity paradox in software engineering: Balancing efficiency and human skill retention

Microsoft Gaming studios head Matt Booty says “overall portfolio strategy is unchanged” — with more than 40 games in production

Capcom reports that its Steam game sales have risen massively — despite flagship titles like Monster Hunter Wilds receiving profuse backlash from PC players

Cloudflare is fighting to safeguard “the future of the web itself” — standing directly in the way of leading AI firms

Microsoft reportedly lacks the know-how to fully leverage OpenAI’s tech — despite holding IP rights

PHP 8.5.0 Alpha 1 available for testing

PHP 8.5.0 Alpha 1 available for testing

Recording cross browser compatible media

Celebrating Perficient’s Third Databricks Champion

Microsoft Gaming studios head Matt Booty says “overall portfolio strategy is unchanged” — with more than 40 games in production

Microsoft Gaming studios head Matt Booty says “overall portfolio strategy is unchanged” — with more than 40 games in production

Capcom reports that its Steam game sales have risen massively — despite flagship titles like Monster Hunter Wilds receiving profuse backlash from PC players

Cloudflare is fighting to safeguard “the future of the web itself” — standing directly in the way of leading AI firms

CVE-2025-4936 – “Projectworlds Online Food Ordering System SQL Injection Vulnerability”

CVE-2025-5372 – OpenSSL SSH Key Derivation Buffer Initialization Vulnerability

CVE-2025-6944 – Uncode Core WordPress Stored Cross-Site Scripting

AlphaDev discovers faster sorting algorithms

Microsoft Surface PC prices drop at Best Buy for a limited time — up to $500 off new models and $1,000 off refurbs

CVE-2025-50369 – PHPGurukul Medical Card Generation System CSRF Vulnerability

UX Design Strategy:Tips and Best Practices

Emmabuntüs: GNU/Linux solidale per il riuso e l’inclusione digitale

Building Fully Autonomous Data Analysis Pipelines with the PraisonAI Agent Framework: A Coding Implementation

Why Guidewire Programs Fail: The Missing Layer of Assurance Enterprises Must Know

How to Use Lazygit to Improve Your Git Workflow

CVE-2025-4936 – “Projectworlds Online Food Ordering System SQL Injection Vulnerability”

Related Posts