PT-2026-56654 · Code Projects · Online Food Ordering System

Zhaoyihao

·

Publicado

2026-07-08

·

Atualizado

2026-07-09

·

CVE-2026-15135

CVSS v3.1

7.3

Alta

VetorAV:N/AC:L/PR:N/UI:N/S:U/C:L/I:L/A:L
A security flaw has been discovered in code-projects Online Food Order System 1.0. This affects an unknown part of the file /edit food items.php. The manipulation of the argument update results in sql injection. It is possible to launch the attack remotely. The exploit has been released to the public and may be used for attacks.

Exploit

Correção

Special Elements Injection

SQL injection

Encontrou algum problema na descrição? Tem algo a acrescentar? Fique à vontade para nos escrever 👾

Enumeração de Fraquezas

Identificadores relacionados

CVE-2026-15135

Produtos afetados

Online Food Ordering System