CVE-2026-30529 | Teknoloji dünyasından en güncel haberleri ve güvenlikle ilgili gelişmeleri takip edin.

A SQL Injection vulnerability exists in SourceCodester Online Food Ordering System v1.0 in the Actions.php file (specifically the save_user action). The applica…
High CVSS: 8.8

CVE-2026-30529

A SQL Injection vulnerability exists in SourceCodester Online Food Ordering System v1.0 in the Actions.php file (specifically the save_user action). The application fails to properly sanitize user input supplied to the "username" parameter. This allows an authenticated attacker to inject malicious SQL commands.
Vendor
Oretnom23
Product
Online Food Ordering System
CWE
CWE-89
Yayın Tarihi
2026-03-27 16:16:23
Güncelleme
2026-03-30 17:21:20
Source Identifier
cve@mitre.org
KEV Date Added
-

Kategoriler

CWE-89 Online Food Ordering System HIGH Oretnom23 2026

Referanslar

https://github.com/meifukun/Web-Security-PoCs/blob/main/Online-Food-Ordering-System/SQLi-Actions-saveUser-username.md