Vulnerability Details CVE-2023-24646
An arbitrary file upload vulnerability in the component /fos/admin/ajax.php of Food Ordering System v2.0 allows attackers to execute arbitrary code via a crafted PHP file.
Exploit prediction scoring system (EPSS) score
EPSS Score 0.001
EPSS Ranking 31.2%
CVSS Severity
CVSS v3 Score 9.8
References
Products affected by CVE-2023-24646
-
cpe:2.3:a:online_food_ordering_system_project:online_food_ordering_system:2.0