Skip to main content

restaurant-website-php-mysql CVE-2026-14622

| EUVDEUVD-2026-41661 MEDIUM
Missing Authentication for Critical Function (CWE-306)
2026-07-04 VulDB GHSA-pqx4-w6cx-6h2x
5.5
CVSS 4.0 · Vendor: VulDB
Share

Severity by source

Vendor (VulDB) PRIMARY
5.5 MEDIUM
CVSS:4.0/AV:N/AC:L/AT:N/PR:N/UI:N/VC:L/VI:L/VA:L/SC:N/SI:N/SA:N/E:P/CR:X/IR:X/AR:X/MAV:X/MAC:X/MAT:X/MPR:X/MUI:X/MVC:X/MVI:X/MVA:X/MSC:X/MSI:X/MSA:X/S:X/AU:X/R:X/V:X/RE:X/U:X
vuln.today AI
7.3 HIGH

Network-accessible unauthenticated endpoint with no complexity; limited confidentiality, integrity, and availability impact scoped to the application's own data.

3.1 AV:N/AC:L/PR:N/UI:N/S:U/C:L/I:L/A:L
4.0 AV:N/AC:L/AT:N/PR:N/UI:N/VC:L/VI:L/VA:L/SC:N/SI:N/SA:N

Primary rating from Vendor (VulDB).

CVSS VectorVendor: VulDB

CVSS:4.0/AV:N/AC:L/AT:N/PR:N/UI:N/VC:L/VI:L/VA:L/SC:N/SI:N/SA:N/E:P/CR:X/IR:X/AR:X/MAV:X/MAC:X/MAT:X/MPR:X/MUI:X/MVC:X/MVI:X/MVA:X/MSC:X/MSI:X/MSA:X/S:X/AU:X/R:X/V:X/RE:X/U:X
Attack Vector
Network
Attack Complexity
Low
Privileges Required
None
User Interaction
None
Scope
X

Lifecycle Timeline

3
Analysis Generated
Jul 04, 2026 - 09:30 vuln.today
CVSS changed
Jul 04, 2026 - 09:22 NVD
6.9 (MEDIUM) 5.5 (MEDIUM)
CVE Published
Jul 04, 2026 - 08:45 cve.org
MEDIUM 5.5

DescriptionCVE.org

A vulnerability was found in jairiidriss restaurant-website-php-mysql up to 521428b5b612449df0cf4a5d15ee40cba67f3d35. This vulnerability affects unknown code of the file /admin/ajax_files of the component AJAX Endpoint. Performing a manipulation results in missing authentication. The attack is possible to be carried out remotely. The exploit has been made public and could be used. This product adopts a rolling release strategy to maintain continuous delivery. Therefore, version details for affected or updated releases cannot be specified. The project was informed of the problem early through an issue report but has not responded yet.

AnalysisAI

Unauthenticated access to the administrative AJAX endpoint in jairiidriss/restaurant-website-php-mysql exposes backend admin functions to any remote attacker without credentials. The /admin/ajax_files endpoint fails to enforce authentication (CWE-306), allowing manipulation of whatever administrative operations it services - likely CRUD operations on menu items, orders, or reservations. …

Unlock full vulnerability intelligence

  • Risk assessment & exploitation conditions
  • Attack chain visualization
  • Remediation with exact patch versions
  • Threat intelligence from 22 sources
  • Personal watchlist & email alerts

Free forever · No credit card required

Attack ChainAIDerived

Hypothetical attack flow derived from CVE metadata

Access
Identify publicly reachable restaurant-website-php-mysql instance
Exploit
Send unauthenticated HTTP request to /admin/ajax_files
Execution
Invoke admin AJAX function without session check
Impact
Read or modify MySQL-backed restaurant data

Vulnerability AssessmentAI

Exploitation The application must be deployed and the /admin/ajax_files endpoint must be reachable over the network - no firewall, IP restriction, or reverse-proxy authentication layer in front of it. … Additional conditions and limiting factors are described in the full assessment.
Risk Assessment The CVSS 4.0 base vector (AV:N/AC:L/AT:N/PR:N/UI:N) reflects straightforward remote unauthenticated exploitation with no complexity barrier - an attacker needs only network reach to the web server. … Full risk analysis with EPSS, KEV, and SSVC signal comparison available after sign-in.
Exploit Scenario An attacker discovers a running instance of this PHP restaurant application via internet scanning or targeted search, identifies the unauthenticated /admin/ajax_files endpoint, and submits crafted AJAX HTTP requests to invoke administrative functions - such as modifying menu records or accessing order data - without supplying any credentials. A public proof-of-concept published as GitHub issue #6 documents the specific request structure required, making exploitation trivially reproducible by any attacker who locates a deployed instance.
Remediation No vendor-released patch has been identified at time of analysis - the maintainer was notified via issue report but has not responded. … Detailed patch versions, workarounds, and compensating controls in full report.

Threat intelligence, references, and detailed analysis are available after sign-in.

Share

CVE-2026-14622 vulnerability details – vuln.today

This site uses cookies essential for authentication and security. No tracking or analytics cookies are used. Privacy Policy