High severity7.3NVD Advisory· Published Mar 29, 2026· Updated Apr 29, 2026
CVE-2026-5019
CVE-2026-5019
Description
A security vulnerability has been detected in code-projects Simple Food Order System 1.0. Affected by this vulnerability is an unknown functionality of the file all-orders.php of the component Parameter Handler. The manipulation of the argument Status leads to sql injection. The attack may be initiated remotely. The exploit has been disclosed publicly and may be used.
AI Insight
LLM-synthesized narrative grounded in this CVE's description and references.
Affected products
2- cpe:2.3:a:carmelo:simple_food_order_system:1.0:*:*:*:*:*:*:*
- Range: = 1.0
Patches
Vulnerability mechanics
References
5- github.com/6Justdododo6/CVE/issues/17nvdExploitIssue TrackingMitigationThird Party Advisory
- vuldb.com/submit/779341nvdVDB EntryThird Party Advisory
- vuldb.com/vuln/353904nvdThird Party AdvisoryVDB Entry
- code-projects.orgnvdProduct
- vuldb.com/vuln/353904/ctinvdVDB EntryPermissions Required
News mentions
0No linked articles in our index yet.