CVE-2026-4532
code-projects Simple Food Ordering System Database Backup food.sql file access
CVSS Score
5.3
EPSS Score
0.0%
EPSS Percentile
0th
A security vulnerability has been detected in code-projects Simple Food Ordering System up to 1.0. Affected by this vulnerability is an unknown functionality of the file /food/sql/food.sql of the component Database Backup Handler. The manipulation leads to files or directories accessible. It is possible to initiate the attack remotely. The exploit has been disclosed publicly and may be used. It is recommended to change the configuration settings.
| CWE | CWE-552 CWE-425 |
| Vendor | code-projects |
| Product | simple food ordering system |
| Published | Mar 22, 2026 |
| Last Updated | Mar 23, 2026 |
Stay Ahead of the Next One
Get instant alerts for code-projects simple food ordering system
Be the first to know when new medium vulnerabilities affecting code-projects simple food ordering system are published โ delivered to Slack, Telegram or Discord.
Get Free Alerts โ
Free ยท No credit card ยท 60 sec setup
CVSS v3 Breakdown
CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:L/I:N/A:N/E:P/RL:W/RC:R Attack Vector
Attack Complexity
Privileges Required
User Interaction
Scope
Confidentiality
Integrity
Availability
Affected Versions
code-projects / Simple Food Ordering System
1.0
References
vuldb.com: https://vuldb.com/?id.352320 vuldb.com: https://vuldb.com/?ctiid.352320 vuldb.com: https://vuldb.com/?submit.774338 github.com: https://github.com/ahmadmarz10-hub/CVEsMarz/blob/main/Simple%20Food%20Ordering%20System%20Information%20Disclosure%20%20.md code-projects.org: https://code-projects.org/
Credits
๐ AhmadMarzouk (VulDB User)