Severity by source
AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H
Primary rating from NVD · only source for this CVE.
CVSS VectorNVD
CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H
Lifecycle Timeline
4DescriptionCVE.org
A SQL Injection vulnerability exists in SourceCodester Online Food Ordering System v1.0 in the Actions.php file (specifically the save_customer action). The application fails to properly sanitize user input supplied to the "username" parameter. This allows an attacker to inject malicious SQL commands.
Articles & Coverage 1
AnalysisAI
SQL injection in SourceCodester Online Food Ordering System v1.0 allows remote attackers to execute arbitrary SQL commands through unsanitized input in the save_customer action's username parameter. The application fails to implement proper input validation or prepared statements, enabling attackers to manipulate database queries directly. Publicly available exploit code exists, and this vulnerability affects the PHP-based web application with no confirmed patch status at time of analysis.
Technical ContextAI
The vulnerability resides in the Actions.php file of a PHP-based web application framework, specifically within the save_customer action handler. The root cause is improper input sanitization of the username parameter, which falls under CWE classification for SQL injection flaws. SQL injection vulnerabilities occur when user-supplied input is concatenated directly into SQL queries without using parameterized statements or prepared statements. In PHP applications, this typically manifests when variables are embedded in query strings via string concatenation or simple escaping mechanisms that fail to account for SQL metacharacters and context-specific encoding requirements. The affected product is SourceCodester Online Food Ordering System v1.0, a PHP application commonly used for restaurant ordering platforms.
RemediationAI
The primary remediation is to upgrade SourceCodester Online Food Ordering System to a patched version if available from the vendor; however, no specific patched version number has been confirmed in the available data. Immediate mitigations include: implement parameterized queries or prepared statements for all database operations, particularly in the save_customer action handler; apply input validation to enforce expected username format (alphanumeric, length restrictions); use ORM frameworks that abstract SQL generation; and deploy a Web Application Firewall (WAF) with SQL injection detection rules to block malicious payloads. Restrict database user privileges to the minimum required for the application's normal operations to limit damage from successful injection. For the Online Food Ordering System, contact the SourceCodester vendor directly or check their repository for available updates, and conduct a comprehensive code review of all user input handling across the application to identify similar injection vectors.
sapi/cgi/cgi_main.c in PHP before 5.3.12 and 5.4.x before 5.4.2, when configured as a CGI script (aka php-cgi), does not
(1) boardData102.php, (2) boardData103.php, (3) boardDataJP.php, (4) boardDataNA.php, and (5) boardDataWW.php in Netgear
ProjectSend versions prior to r1720 are affected by an improper authentication vulnerability. Rated critical severity (C
Roundcube Webmail contains a critical PHP object deserialization vulnerability (CVE-2025-49113, CVSS 9.9) that allows au
Util/PHP/eval-stdin.php in PHPUnit before 4.8.28 and 5.x before 5.6.3 allows remote attackers to execute arbitrary PHP c
Palo Alto Networks PAN-OS management web interface contains an authentication bypass allowing unauthenticated attackers
Nagios XI version xi-5.7.5 is affected by OS command injection. Rated high severity (CVSS 8.8), this vulnerability is re
Nagios XI version xi-5.7.5 is affected by OS command injection. Rated high severity (CVSS 8.8), this vulnerability is re
The get_referers function in /opt/ws/bin/sblistpack in Sophos Web Appliance before 3.7.9.1 and 3.8 before 3.8.1.1 allows
The Backup Migration plugin for WordPress is vulnerable to Remote Code Execution in all versions up to, and including, 1
NetAlertX (formerly PiAlert) versions 23.01.14 through 24.x before 24.10.12 allow unauthenticated command injection thro
The GiveWP - Donation Plugin and Fundraising Platform plugin for WordPress is vulnerable to PHP Object Injection in all
Same weakness CWE-89 – SQL Injection
View allShare
External POC / Exploit Code
Leaving vuln.today
EUVD-2026-16676