Loading market data...
← Back to CVE feed

CVE-2026-15135

HIGH CVSS 7.3 View on NVD ↗

Description

A security flaw has been discovered in code-projects Online Food Order System 1.0. This affects an unknown part of the file /edit_food_items.php. The manipulation of the argument update results in sql injection. It is possible to launch the attack remotely. The exploit has been released to the public and may be used for attacks.

CVSS Vector

CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:L/I:L/A:L
Published: Jul 09, 2026 00:17 UTC Modified: Jul 09, 2026 16:20 UTC