code-projects Online Food Ordering System localhost.sql privilege escalation_CVE-2026-4900

6.9 / 10

MEDIUM

CVSS:4.0/AV:N/AC:L/AT:N/PR:N/UI:N/VC:L/VI:N/VA:N/SC:N/SI:N/SA:N/E:P

Description

A weakness has been identified in code-projects Online Food Ordering System 1.0. This affects an unknown part of the file /dbfood/localhost.sql. This manipulation causes files or directories accessible. The attack can be initiated remotely. The exploit has been made available to the public and could be used for attacks. It is advisable to modify the configuration settings.

Basic Information

ID CVE-2026-4900

Source VulDB

Published Mar 26, 2026 at 21:56

Modified Mar 30, 2026 at 11:46

Affected Product

Vendor code-projects

Product Online Food Ordering System

Version 1.0

Affected Versions code-projects Online Food Ordering System 1.0

CWE Classification

CWE-552 CWE-425

References

{
    "lastseen": "",
    "description": "A weakness has been identified in code-projects Online Food Ordering System 1.0. This affects an unknown part of the file /dbfood/localhost.sql. This manipulation causes files or directories accessible. The attack can be initiated remotely. The exploit has been made available to the public and could be used for attacks. It is advisable to modify the configuration settings.",
    "published": "2026-03-26T21:56:46.312Z",
    "modified": "2026-03-30T11:46:20.001Z",
    "type": "cve",
    "title": "code-projects Online Food Ordering System localhost.sql privilege escalation",
    "source": "VulDB",
    "references": "https://vuldb.com/?id.353642\nhttps://vuldb.com/?ctiid.353642\nhttps://vuldb.com/?submit.776980\nhttps://github.com/ahmadmarz10-hub/CVEsMarz/blob/main/Online%20Food%20Ordering%20System%20in%20PHP%201.0%20%E2%80%93%20Sensitive%20Information%20Disclosure.md\nhttps://code-projects.org/",
    "id": "CVE-2026-4900",
    "bulletinFamily": "",
    "cwe": [
        "CWE-552",
        "CWE-425"
    ],
    "cvelist": null,
    "sourceData": "code-projects Online Food Ordering System 1.0",
    "sourceHref": "",
    "cvss": {
        "score": 6.9,
        "severity": "MEDIUM",
        "vector": "CVSS:4.0/AV:N/AC:L/AT:N/PR:N/UI:N/VC:L/VI:N/VA:N/SC:N/SI:N/SA:N/E:P",
        "version": "4.0"
    },
    "cvss2": [],
    "cvss3": {
        "version": "",
        "vectorString": "",
        "baseScore": 0,
        "baseSeverity": "",
        "attackVector": "",
        "attackComplexity": "",
        "privilegesRequired": "",
        "userInteraction": "",
        "scope": "",
        "confidentialityImpact": "",
        "integrityImpact": "",
        "availabilityImpact": "",
        "cvssV3": {
            "version": "",
            "vectorString": "",
            "baseScore": 0,
            "baseSeverity": "",
            "attackVector": "",
            "attackComplexity": "",
            "privilegesRequired": "",
            "userInteraction": "",
            "scope": "",
            "confidentialityImpact": "",
            "integrityImpact": "",
            "availabilityImpact": ""
        }
    },
    "href": "",
    "category_name": "CVE",
    "post_link": "",
    "product": "Online Food Ordering System",
    "version": "1.0",
    "vendor": "code-projects",
    "ai_description": "",
    "ai_severity": "",
    "ai_vendor": "",
    "ai_product": "",
    "ai_version": "",
    "ai_score": 0
}