Analysis and contextual insights are available on OpenCVE Cloud.
No vendor fix or workaround currently provided.
Additional remediation guidance may be available on OpenCVE Cloud.
Tracking
Sign in to view the affected projects.
No advisories yet.
Wed, 08 Jul 2026 23:45:00 +0000
| Type | Values Removed | Values Added |
|---|---|---|
| Description | A security flaw has been discovered in code-projects Online Food Order System 1.0. This affects an unknown part of the file /edit_food_items.php. The manipulation of the argument update results in sql injection. It is possible to launch the attack remotely. The exploit has been released to the public and may be used for attacks. | |
| Title | code-projects Online Food Order System edit_food_items.php sql injection | |
| First Time appeared |
Code-projects
Code-projects online Food Order System |
|
| Weaknesses | CWE-74 CWE-89 |
|
| CPEs | cpe:2.3:a:code-projects:online_food_order_system:*:*:*:*:*:*:*:* | |
| Vendors & Products |
Code-projects
Code-projects online Food Order System |
|
| References |
| |
| Metrics |
cvssV2_0
|
Status: PUBLISHED
Assigner: VulDB
Published:
Updated: 2026-07-08T23:30:09.990Z
Reserved: 2026-07-08T17:11:33.840Z
Link: CVE-2026-15135
No data.
No data.
No data.
OpenCVE Enrichment
No data.