CVE-2025-7814 – Food Ordering Review System SQL Injection Vulnerability

July 18, 2025

CVE ID : CVE-2025-7814

Published : July 18, 2025, 10:15 p.m. | 31 minutes ago

Description : A vulnerability classified as critical was found in code-projects Food Ordering Review System 1.0. This vulnerability affects unknown code of the file /pages/signup_function.php. The manipulation of the argument fname leads to sql injection. The attack can be initiated remotely. The exploit has been disclosed to the public and may be used. Other parameters might be affected as well.

Severity: 7.3 | HIGH

Visit the link for more details, such as CVSS details, affected products, timeline, and more…

Source: Read More

Previous ArticleMy favorite lens and screen-cleaning kit keeps my tech spotless, and it only costs $8

Next Article CVE-2025-7806 – Tenda FH451 Stack-Based Buffer Overflow Vulnerability

Highlights

CVE-2025-4977 – Netgear DGND3700 Cross-Site Scripting Vulnerability

May 20, 2025

CVE ID : CVE-2025-4977

Published : May 20, 2025, 1:15 p.m. | 1 hour, 34 minutes ago

Description : A vulnerability, which was classified as problematic, has been found in Netgear DGND3700 1.1.00.15_1.00.15NA. Affected by this issue is some unknown functionality of the file /BRS_top.html. The manipulation leads to information disclosure. The attack may be launched remotely. The exploit has been disclosed to the public and may be used. Other products might be affected as well. The vendor was contacted early about this disclosure.

Severity: 5.3 | MEDIUM

Visit the link for more details, such as CVSS details, affected products, timeline, and more…

In-House vs. Outsource Node.js Development Teams: 9 Key Differences for the C-Suite (2025)

Why Non-Native Content Designers Improve Global UX

DevOps won’t scale without platform engineering and here’s why your teams are still stuck

This week in AI dev tools: Slack’s enterprise search, Claude Code’s analytics dashboard, and more (July 18, 2025)

I ditched my Bluetooth speakers for this slick turntable – and it’s more practical than I thought

This split keyboard offers deep customization – if you’re willing to go all in

I spoke with an AI version of myself, thanks to Hume’s free tool – how to try it

I took a walk with Meta’s new Oakley smart glasses – they beat my Ray-Bans in every way

The details of TC39’s last meeting

The details of TC39’s last meeting

Simple wrapper for Chrome’s built-in local LLM (Gemini Nano)

Online Examination System using PHP and MySQL

Top 7 Computer Performance Test Tools Online (Free & Fast)

Top 7 Computer Performance Test Tools Online (Free & Fast)

10 Best Windows 11 Encryption Software

Google Chrome Is Testing Dynamic Country Detection for Region-Specific Features

CVE-2025-7814 – Food Ordering Review System SQL Injection Vulnerability

Critical mcp-remote Vulnerability Enables Remote Code Execution, Impacting 437,000+ Downloads

CISA Adds Citrix NetScaler CVE-2025-5777 to KEV Catalog as Active Exploits Target Enterprises

Common abstraction traps

Kritiek RoundCube-lek maakt remote code execution op mailserver mogelijk

CVE-2025-7114 – SimStudioAI Session Handler Missing Authentication Vulnerability

: “Glass Cage” – Zero-Click iMessage → Persistent iOS Compromise + Bricking (CVE-2025-24085 / 24201, CNVD-2025-07885)

CVE-2025-4977 – Netgear DGND3700 Cross-Site Scripting Vulnerability

CVE-2025-47164 – Microsoft Office Use After Free Remote Code Execution Vulnerability

CVE-2025-6847 – Code-projects Simple Forum SQL Injection

CVE-2025-5817 – Amazon Products to WooCommerce SSRF Vulnerability

CVE-2025-7814 – Food Ordering Review System SQL Injection Vulnerability

Related Posts