ГлавнаяУязвимости → CVE-2026-4319
7.3высокая

CVE-2026-4319

Описание

A vulnerability was identified in code-projects Simple Food Order System 1.0. Affected by this vulnerability is an unknown functionality of the file /routers/add-item.php. Such manipulation of the argument price leads to sql injection. The attack can be launched remotely. The exploit is publicly available and might be used.

Затрагиваемое ПО
Carmelo Simple food order system
CVSS
Балл7.3 — высокая
ВекторCVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:L/I:L/A:L
Источники
https://code-projects.org/https://github.com/6Justdododo6/CVE/issues/14https://vuldb.com/?ctiid.351363https://vuldb.com/?id.351363https://vuldb.com/?submit.772662