CNNVD-202602-1228 Information

CNNVD ID

CNNVD-202602-1228

Related CVE

CVE-2026-2136

• CNNVD Published: 2026-02-08

Description (Chinese)

Projectworlds Online Food Ordering System是印度Projectworlds公司的一个网上订餐系统。 projectworlds Online Food Ordering System 1.0版本存在SQL注入漏洞，该漏洞源于对文件/view-ticket.php的参数ID的错误操作，可能导致SQL注入攻击。

Description (English)

Projectworlds Online Food Ordering Systems is an online subscription system for Projectworlds in India. There is an SQL injection loophole in version 1.0 of projectworlds Online Food Ordering System, which stems from an error in the id of the parameter for file/view-ticket.php, which could lead to an SQL injection attack.

Hazard Level

Medium

Vulnerability Type

SQL注入

Affected Vendor

Projectworlds

Published

2026-02-08

Last Modified

2026-02-24

References

https://github.com/hater-us/CVE/issues/4 https://vuldb.com/?ctiid.344771 https://vuldb.com/?submit.747230 https://vuldb.com/?id.344771 https://access.redhat.com/security/cve/cve-2026-2136