PT-2026-29144 · Code Projects · Online Food Ordering System

Abhiram T

Published

2026-03-30

Updated

2026-03-31

CVE-2026-5157

CVSS v2.0

5.0

Medium

Vector

AV:N/AC:L/Au:N/C:N/I:P/A:N

Name of the Vulnerable Software and Affected Versions code-projects Online Food Ordering System version 1.0

Description A cross-site scripting issue exists in the Order Module component, specifically within the file /form/order.php. Manipulation of the cust id argument can lead to the execution of malicious scripts. The attack can be performed remotely. The exploit is publicly available.

Recommendations Apply a fix for code-projects Online Food Ordering System version 1.0.

Exploit

Fix

Code Injection

XSS

Found an issue in the description? Have something to add? Feel free to write us 👾

dbugs@ptsecurity.com

Weakness Enumeration

CWE-94CWE-79

Related Identifiers

CVE-2026-5157

Affected Products

Online Food Ordering System

PT-2026-29144 · Code Projects · Online Food Ordering System

CVE-2026-5157

Weakness Enumeration

Related Identifiers

Affected Products

References · 8