CVE-2026-4841 | code-projects Online Food Ordering System 1.0 Shopping Cart form/cart.php del sql injection

Inserito da Angelo Barbosa | Mar 25, 2026 | CVE

A vulnerability labeled as critical has been found in code-projects Online Food Ordering System 1.0. This affects an unknown part of the file form/cart.php of the component Shopping Cart Module. Executing a manipulation of the argument del can lead to sql injection.

This vulnerability is handled as CVE-2026-4841. The attack can be executed remotely. Additionally, an exploit exists.

CVE-2026-4841 | code-projects Online Food Ordering System 1.0 Shopping Cart form/cart.php del sql injection

Post correlati

CVE-2025-11902 | yanyutao0402 ChanCMS up to 3.3.2 /cms/article/findField cid sql injection

CVE-2021-47497 | Linux Kernel up to 5.14.13 drivers/nvmem/core.c out-of-bounds

CVE-2024-53847 | basecamp trix up to 1.3.2/2.1.8 cross site scripting

CVE-2024-3015 | SourceCodester Simple Subscription Website 1.0 manage_plan.php id sql injection