CVE-2025-15073

A vulnerability was determined in itsourcecode Online Frozen Foods Ordering System 1.0. This affects an unknown part of the file /contact_us.php. This manipulation of the argument Name causes sql injection. It is possible to initiate the attack remotely. The exploit has been publicly disclosed and m...

high 7.3 CVSS 3.1

Published: Dec 24, 2025

Modified: Dec 30, 2025

Product: Online Frozen Foods Ordering System

Versions: 1.0

Description

A vulnerability was determined in itsourcecode Online Frozen Foods Ordering System 1.0. This affects an unknown part of the file /contact_us.php. This manipulation of the argument Name causes sql injection. It is possible to initiate the attack remotely. The exploit has been publicly disclosed and may be utilized.

References

Related CVEs

CVSS Breakdown

Version	3.1
Score	7.3 / 10
Severity	high

Vector

CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:L/I:L/A:L

Weakness (CWE)

CWE-74

Affected Product

Vendor	Itsourcecode
Product	Online Frozen Foods Ordering System
Versions	1.0