CVE-2026-2136 | projectworlds Online Food Ordering System 1.0 /view-ticket.php ID sql injection

Inserito da Angelo Barbosa | Feb 6, 2026 | CVE

A vulnerability was found in projectworlds Online Food Ordering System 1.0. It has been declared as critical. This affects an unknown function of the file /view-ticket.php. Executing a manipulation of the argument ID can lead to sql injection.

This vulnerability is registered as CVE-2026-2136. It is possible to launch the attack remotely. Furthermore, an exploit is available.

CVE-2026-2136 | projectworlds Online Food Ordering System 1.0 /view-ticket.php ID sql injection

Post correlati

CVE-2025-41690 | Endress+Hauser Promag 10 with HART Bluetooth log file (VDE-2025-068)

CVE-2022-43842 | IBM Aspera Console up to 3.4.2 sql injection (XFDB-239079)

CVE-2024-10646 | Fluent Contact Form Plugin up to 5.2.6 on WordPress cross site scripting

CVE-2024-6333 | Xerox WorkCentre EC7856 input validation