GHSA-vxhq-q9qm-8cqmMediumCVSS 5.3
A flaw has been found in SourceCodester Simple Food Ordering System 1.0. The affected element is...
🔗 CVE IDs covered (1)
📋 Description
A flaw has been found in SourceCodester Simple Food Ordering System 1.0. The affected element is an unknown function of the file /cart.php. Executing a manipulation of the argument item_price can lead to business logic errors. The attack may be performed from remote. The exploit has been published and may be used.
🔗 References (8)
- https://nvd.nist.gov/vuln/detail/CVE-2026-13571
- https://github.com/ogh-bnz/Simple-Food-Ordering-System/blob/main/Simple-Food-Ordering-System-Price-Manipulation.md
- https://vuldb.com/cve/CVE-2026-13571
- https://vuldb.com/submit/844355
- https://vuldb.com/vuln/374579
- https://vuldb.com/vuln/374579/cti
- https://www.sourcecodester.com
- https://github.com/advisories/GHSA-vxhq-q9qm-8cqm