{"description":"Trending threats, MITRE ATT\u0026CK coverage, and detection metadata — refreshed continuously.","feed_url":"https://feed.craftedsignal.io/tags/cve-2026-4615/","home_page_url":"https://feed.craftedsignal.io/","items":[{"_cs_actors":[],"_cs_cves":[],"_cs_exploited":false,"_cs_products":[],"_cs_severities":["high"],"_cs_tags":["sql-injection","cve-2026-4615","web-application"],"_cs_type":"advisory","_cs_vendors":[],"content_html":"\u003cp\u003eSourceCodester Online Catering Reservation 1.0 is vulnerable to SQL injection, as identified by CVE-2026-4615. The vulnerability resides within the \u003ccode\u003e/search.php\u003c/code\u003e file and can be triggered by manipulating the \u003ccode\u003ercode\u003c/code\u003e argument. This allows a remote attacker to inject arbitrary SQL queries into the application\u0026rsquo;s database, potentially leading to data breaches, modification of data, or complete compromise of the database server. The vulnerability was reported on March 23, 2026, and a public exploit…\u003c/p\u003e\n","date_modified":"2026-03-25T12:00:00Z","date_published":"2026-03-25T12:00:00Z","id":"/briefs/2026-03-online-catering-sqli/","summary":"A SQL injection vulnerability exists in SourceCodester Online Catering Reservation 1.0's `/search.php` file, allowing remote attackers to execute arbitrary SQL commands by manipulating the `rcode` argument.","title":"SourceCodester Online Catering Reservation SQL Injection Vulnerability (CVE-2026-4615)","url":"https://feed.craftedsignal.io/briefs/2026-03-online-catering-sqli/"}],"language":"en","title":"CraftedSignal Threat Feed — Cve-2026-4615","version":"https://jsonfeed.org/version/1.1"}