PT-2026-28205 · Code Projects · Online Food Ordering System
Abhiram T
·
Published
2026-03-26
·
Updated
2026-03-26
·
CVE-2026-4841
CVSS v3.1
7.3
High
| AV:N/AC:L/PR:N/UI:N/S:U/C:L/I:L/A:L |
A weakness has been identified in code-projects Online Food Ordering System 1.0. This affects an unknown part of the file form/cart.php of the component Shopping Cart Module. Executing a manipulation of the argument del can lead to sql injection. The attack can be executed remotely. The exploit has been made available to the public and could be used for attacks.
Exploit
Fix
Special Elements Injection
SQL injection
Found an issue in the description? Have something to add? Feel free to write us 👾
Related Identifiers
Affected Products
Online Food Ordering System