← back
CVE-2026-4900

code-projects Online Food Ordering System localhost.sql privilege escalation

CVSS 6.9 MEDIUMEPSS 0.4%CWE-425CWE-552
A weakness has been identified in code-projects Online Food Ordering System 1.0. This affects an unknown part of the file /dbfood/localhost.sql. This manipulation causes files or directories accessible. The attack can be initiated remotely. The exploit has been made available to the public and could be used for attacks. It is advisable to modify the configuration settings.
CVSS:4.0/AV:N/AC:L/AT:N/PR:N/UI:N/VC:L/VI:N/VA:N/SC:N/SI:N/SA:N/E:P
Affected products
code-projects · Online Food Ordering System

Want to know if your infrastructure is exposed to this?

Talk to TrueHacking →
References
https://code-projects.org/https://github.com/ahmadmarz10-hub/CVEsMarz/blob/main/Online%20Food%20Ordering%20System%20in%20PHP%201.0%20%E2%80%93%20Sensitive%20Information%20Disclosure.mdhttps://vuldb.com/?ctiid.353642https://vuldb.com/?id.353642https://vuldb.com/?submit.776980