Security Advisory

CVE-2026-30529

CVE vulnerability detail — eXtreme Datacenter Security Operations

Published 2026-03-27 00:00:00

Last updated 2026-03-27 20:01:49

Assigner mitre

State PUBLISHED

Description

A SQL Injection vulnerability exists in SourceCodester Online Food Ordering System v1.0 in the Actions.php file (specifically the save_user action). The application fails to properly sanitize user input supplied to the "username" parameter. This allows an authenticated attacker to inject malicious SQL commands.

← Browse all CVEs View on cve.org ↗